Matthew wrote:
> I am looking for the best way or practices to lock down Apache 2
> running on a Windows 2003 server. At the moment all I have installed
> system wise is Apache 2, PHP5, MySQL5. IIS 6 in not even installed on
> the system. What I would like to have happen is once a person connects
> to the site, it prompts them for a sign on (user name and password) if
> they don't get it correct, it will bounce them to another site.

Take a look on mod_auth:
http://httpd.apache.org/docs/2.0/mod/mod_auth.html
in combination with

ErrorDocument 403 http://example.com

may be use this directives inside a
<Location /> or <Directory /> container.

--
Robert