Is this bad practice? I've been using htaccess to protect directories on my site then Google pushed to add https to my wordpress. Frequently I get a 401 error on the wordpress admin url. It goes away if I remove the htpasswd.
401 means authentication required - it's displayed when the client sends no or incorrect authentication details, or doesn't support basic authentication.
