John, problem is broken HTTP/1.1 implementation of Internet Exploder. Make your server downgrade to HHTP/1.0. e.g. for apache:
<example> <IfModule mod_setenvif.c> # # The following directives modify normal HTTP response behavior. # The first directive disables keepalive for Netscape 2.x and browsers that # spoof it. There are known problems with these browser implementations. # The second directive is for Microsoft Internet Explorer 4.0b2 # which has a broken HTTP/1.1 implementation and does not properly # support keepalive when it is used on 301 or 302 (redirect) responses. # BrowserMatch "Mozilla/2" nokeepalive BrowserMatch "MSIE" nokeepalive downgrade-1.0 force-response-1.0 # # The following directive disables HTTP/1.1 responses to browsers which # are in violation of the HTTP/1.0 spec by not being able to grok a # basic 1.1 response. # BrowserMatch "RealPlayer 4\.0" force-response-1.0 BrowserMatch "Java/1\.0" force-response-1.0 BrowserMatch "JDK/1\.0" force-response-1.0 </IfModule> </example> copy BrowserMatch line in SSL virtual server section too. -Stathis. Rasmus Lerdorf wrote: > > Nope, PHP does not send that. > > On Mon, 7 Oct 2002, 1LT John W. Holmes wrote: > > > I believe in miracles. I have searched Microsoft and the first link was > > actually related to my problem... > > > > Okay, I found an IE issue where downloads over SSL will choke when you send > > a no-cache header. It says to use a no-store cache-control header, instead. > > I tried this: > > > > header("cache-control: no-store"); > > header("content-type: application/vnd.ms-excel; name='excel'"); > > header("content-disposition: attachment; filename=" . $filename . > > ".xls"); > > > > and I'm still getting the same thing. Is the no-cache cache-control header > > sent automatically by PHP at all? I don't have one set explicitly in my > > code. > > > > Any help is appreciated. > > > > ---John Holmes... > > > > ----- Original Message ----- > > From: "Rasmus Lerdorf" <[EMAIL PROTECTED]> > > To: "1LT John W. Holmes" <[EMAIL PROTECTED]> > > Cc: <[EMAIL PROTECTED]> > > Sent: Monday, October 07, 2002 10:08 AM > > Subject: Re: [PHP] File download doesn't work with SSL > > > > > > > Does it work with a different browser? Smells like an IE bug to me. > > > > > > On Mon, 7 Oct 2002, 1LT John W. Holmes wrote: > > > > > > > Everyone, > > > > > > > > I've had a simple download script working where a user would click on a > > link and the program would send word or excel headers instead of HTML. The > > file would then be opened in the appropriate program and the user could > > save/edit it. > > > > > > > > Now that we've loaded everything under SSL, it doesn't work. > > > > > > > > Here are the headers I send: > > > > > > > > header("content-type: application/vnd.ms-excel; name='excel'"); > > > > header("content-disposition: attachment; filename=" . $filename . > > ".xls"); > > > > > > > > Now, the pages in question are just regular HTML tables. If there is a > > export2=excel in the URL, then these two additional headers will be sent. > > The dialog to save/open the file pops up, but when you try to open/save the > > file, IE says it cannot be found. If I put in a echo before these two > > headers (or comment them out), the page is shown correctly as HTML, so the > > code is correct. > > > > > > > > Are there any special headers I have to send to enable this file > > download while under SSL, or is it something else I'm overlooking? > > > > > > > > Thanks for any help. > > > > > > > > ---John Holmes... > > > > > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php -- Rouvas Stathis [EMAIL PROTECTED] http://www.di.uoa.gr/~rouvas -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php