Security

As an NUWeb user, you are solely responsible for the content, accuracy, maintenance and consequences of information you publish. Individually-identifiable and/or sensitive information such as Social Security Numbers, dates of birth, financial information, student records, or any other privileged information may not be published.

If you are interested in using a digital certificate (https), please contact webgroup@neu.edu for information.

If you do publish content that you deem to be sensitive information, yet it is compliant with the university’s web publishing agreement, you can set up password protection or use a digital certificate. The following are instructions on how to password protect areas of your site.

  1. Log on to nuweb[your server #].neu.edu via secure shell.
  2. Change directory to the directory of which you want to provide password protection:
    cd [PATH TO PRIVATE DIRECTORY]
  3. Create a file in that directory (you can upload a file using sftp if you prefer) called “.htaccess”. (note, the . in front of the filename is mandatory). The contents of the file should be exactly as follows, substituting in the correct info for “[PATH TO PRIVATE DIRECTORY]” (if you do not know this information, type “pwd” at the command prompt and that will give you the full path):
    authtype basic
    authname protected
    authuserfile /[PATH TO PRIVATE DIRECTORY]/.htpasswd
    require valid-user
  4. To create the password file, while you are in the directory you are going to password protect, type the following at your prompt:
    /usr/bin/htpasswd -c .htpasswd [NAME OF AUTHORIZED USER] The system will ask you to enter a password for this user, then ask you to repeat it.
  5. You may continue to add users, but the “-c” option is only used to create the database. Do not use “-c” again.
    /usr/bin/htpasswd .htpasswd [NAME OF AUTHORIZED USER]
  6. Go to your website and try it out! If a password prompt does not appear and you have followed the above steps, your server account may need permission to use .htaccess. Please contact webgroup@neu.edu in this event.