https://bz.apache.org/bugzilla/show_bug.cgi?id=69736
--- Comment #7 from Reindl Harald <[email protected]> --- it could be so easy when httpd would support something like <IfPort> another solution would be when you don't need the "SSLEngine" option at all and make it implicit in case port is 443 and off for 80 that would work fine for the typical default ports 80 / 443 SSLEngine itself would only be needed for non-standard ports <VirtualHost *:80 *:443> ServerName packages.thelounge.net DocumentRoot "/Volumes/dune/buildserver/repo" <Directory "/Volumes/dune/buildserver/repo"> Options +Indexes Require all granted </Directory> <IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{HTTPS} off RewriteCond %{CONN_REMOTE_ADDR} !^192\.168\.196\.4 RewriteCond %{REQUEST_URI} !^\/\.well\-known\/acme\-challenge\/ RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} </IfModule> <IfModule mod_headers.c> Header always set "Strict-Transport-Security" "max-age=31536000" </IfModule> <IfPort 443> SSLEngine On </IfPort> SSLCertificateFile "/var/lib/letsencrypt-wildcard/certs/wildcard_rsa.pem" SSLCertificateFile "/var/lib/letsencrypt-wildcard/certs/wildcard_ecdsa.pem" </VirtualHost> -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
