It is possible to add password access to a file using the htpasswd but I notice this warning is often given.
Passwords and user names are transmitted in the clear by the browser, and so are vulnerable to being intercepted by others.
You should not use this password protection facility for anything serious, like guarding your customer's data, credit card information or any other valuable information. It is basically only good for things like
If the above is true, why don't the various help pages who all seem to give out the same 'this is how to secure your pages' tell you how to send a secure name and password to host from a browser or indeed what should you be doing to guard log information like a customers name and address which they most likely entered into a form.