On Wed, Jun 01, 2011 at 07:02:26PM -0400, Jim Paris wrote: > > I've just tried it, but it doesn't work for me. I presume this is > > because the host I'm going through only accepts SSL traffic on port > > 443 and only accepts non-SSL traffic on port 80. Do you have Apache > > setup so that it can accept either SSL or non-SSL on the same port? > > > > Julian > > I have Apache set up to require SSL on port 443, but the Apache bug > means that it stops using SSL (and switches to plaintext) as soon as > mod_proxy takes over. My config is roughly > > <VirtualHost *:443> > SSLEngine on > ProxyRequests on > AllowCONNECT 22 > ProxyVia on > <Proxy *> > Order deny,allow > Deny from all > </Proxy> > <Proxy destination-ssh-host.example.com> > Order allow,deny > Allow from all > </Proxy> > </VirtualHost>
Ah, I think I see the difference in my config: I have SSLRequireSSL in my setup, so that port 443 will refuse to convert to plain text. Incidentally, apache 2.4 will have the mod-proxy patch included as part of the main distribution. The first beta was released about a week ago (see http://httpd.apache.org/). Julian -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
