Re: [LIH]Gmail like Redirecting from http to https

[Prashanth Ninan]

I checked gmail today and i found that it
automatically redirects me from http to https, and
that too without even asking for the certificate.

can some pls guide me to some proper documentation on
this?

If you do a series of wget requests on this, you will see what is happening.

1> If you wget http://www.gmail.com/, you will see that it does a
redirect (302) to http://mail.google.com/mail/
2> A wget against http://mail.google.com/mail/ results in a 302 to
Location: 
https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%2
which uses a valid certificate generated by a trusted CA. Therefore it
is not necessary for your browser to request your separate validation.

This is how the http changes to a https (thanks to the redirects) and
the certificate is not asked for (thanks to the CA being trusted).

HTH,
Prashanth


-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid7521&bid$8729&dat1642
_______________________________________________
linux-india-help mailing list
linux-india-help@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/linux-india-help