Maxwell Smart wrote:
I have set up the Rewrite as suggested, but it does not redirect from
http to https is only says forbidden. I can create a 403 redirect, but
would rather set it up as a simple redirect. How is this done?
Hmmm. I have one host where this is working, but I just checked another
where it's not. I guess it's time to look into this. I'm no apache
expert, so this might take a little while.
While this will work for one domain or if the user knows that the master
domain is the one he is receiving the certificate for. Has anyone set
it up either using ssl or gnutls to have each virtual domain using it's
on certificate? I use the QMT ISO as a webserver and would like to be
able to offer certs for individual clients thus being able to correctly
authenticate either their https://www.myserver.com or
https://mail.myserver.com correctly.
I don't believe this is possible. I don't think I understand the
limitation well enough to accurately describe the problem, but as I
understand it, its a limitation of the way ssl works. Simply put, a host
can have only one identity. If someone knows a way to do this, I'd like
to know about it.
CJ
On 05/27/2010 11:28 AM, Eric Shubert wrote:
Scott Hughes wrote:
Does anyone happen to know if there is a wiki entry for securing
SquirrelMail using SSL? I'm looking but I'm not finding it.
Thanks,
Scott
http://wiki.qmailtoaster.com/index.php/Certificate briefly mentions
that you can use the cert for apache. That page could really use some
rework.
Note, the mod-ssl package must be installed for apache.
Once you have a certificate installed for apache, the
squirrelmail.conf file can be modified to look like this:
<IfModule mod_alias.c>
Alias /webmail /usr/share/squirrelmail
</IfModule>
RewriteEngine on
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^(.*/webmail.*)$ https://%{SERVER_NAME}$1 [L,R]
<Directory /usr/share/squirrelmail>
Options None
Order allow,deny
allow from all
SSLRequireSSL
</Directory>
I see you've started a SM page on the wiki. Great.
Thanks for your work on this.
--
-Eric 'shubes'
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
