On 2001.03.08 21:30 "Chong, Arthur" wrote:
> Per my earlier post, if this directive works,
> I suppose folks are building one secure server
> with secure directories that are in
> the virtual hosted server areas.....would that be a
> good way to go about it?
>
> i.e. one secure web server off port 443, multiple
> virtual hosts, but with secure directories under
> the virtual host directory...
>
> Hope I'm not confusing you!
Well, the issue is that there are only certain directories (login pages)
scattered throughout the entire site. We are basically just kinda slapping SSL
on top and migrating stuff over from JServ to Tomcat as well, and probably
later reorganizing things more once the first hurdle is done.
I think the misunderstanding about how SSLRequireSSL works was my initial
problem. The documentation states that it denies access if an SSL-enabled
connection is not made. But it seems to mean that only if someone tries to
connect via port 443 (or via virtual host) without SSL will it deny access. It
doesn't seem to deny access when connections are made via port 80.
However, what I ended up doing first was trying to do redirects from the
non-https url to the https url, but that backfired on me at first, because I
put it in the mian server config, and it just went into a vicious loop -- the
non-https url would get redirected, but then it would try to redirect the https
directory, over and over and over...
But then I created a virtual host for port 80 and put all of my redirects there
and it worked like a charm, with Tomcat and JSPs and servlets and all.
--
http://www.chapelperilous.net/~bmccoy/
------------------------------------------------------------------------
Always draw your curves, then plot your reading.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
