bug in mod_auth in 1.4.11?

I have this in my lighttpd.conf


auth.require                = ( "/admin" =>
                                 (
                                   "method" 
=> "digest",
                                   "realm"  
=> "name1",
                                   "require"
=> "user=user1"
                                 ),
                                  "/rb" =>
                                 (
                                   "method" 
=> "digest",
                                   "realm"  
=> "name2",
                                   "require"
=> "user=user1"
                                 )
                               )

after going to www.domain.com/rb, Lighttpd then asks for the
password 
for realm of "/rb", and once authenticated, asks
for the password of
"/admin", even though the string /admin does not
appear in the url. I've 
upgraded from 1.4.8 and this didn't happen before. There's
no known bugs 
in mod_auth for 1.4.11. Anyone else had this problem with
1.4.11?

-Zavier