.htaccess https rules
Good morning Apache developers, I'm not sure this is the appropriate place for this message. I'm looking for somebody which knows what he is doing so I'm posting the message here. I recently purchased an SSL certificate. As part of moving to https I'm looking to contract somebody to assist me with correctly configuring the .htaccess to force https. - force all http 301 to https - force http://site.com and https://site.com 301 to https://www.site.com - force http://site.com/index.html and https://site.com/index.html http://www.site.com/index.html and https://www.site.com/index.html 301 to https://www.site.com - correctly force /blog/ (wordpress) to https (main site is static html) - correctly handle / and non / for all the above combinations (google should see a single consolidated URL address without any trailing space) - do all this with the minimum number of 301 redirects (ideally all URLs should be handled in 1 redirection to avoid multi steps redirections) - review that the final version of .htaccess is correct and optim If you are insterested please reply to this message. Thank you,Virgil
Re: svn commit: r1681297 - in /httpd/httpd/branches/2.2.x: ./ CHANGES STATUS docs/manual/mod/mod_log_config.xml modules/loggers/mod_log_config.c
On Sat, May 23, 2015 at 11:23 AM, yla...@apache.org wrote: Author: ylavic Date: Sat May 23 09:23:13 2015 New Revision: 1681297 URL: http://svn.apache.org/r1681297 Log: Merged r979120 from trunk. [] Modified: httpd/httpd/branches/2.2.x/STATUS [] - * mod_log_config: Allow to choose request start or end time - as time stamp in log (httpd traditionally uses start, many - other components, e.g. Tomcat use end time, so they are kind - of hard to correlate). Also add more format choices for time stamps. - Needed get_request_end_time() was already ported back. - trunk patch: http://svn.apache.org/r979120 (remaining parts) - 2.4.x patch: http://svn.apache.org/r979120 (remaining parts) - 2.2.x patch: http://people.apache.org/~rjung/patches/httpd-2.2.x-mod_log_config-more_time_formats-v2.patch - +1: rjung, wrowe, ylavic - rjung: I had forgotten the docs part. Added in v2 patch. OK to keep Bill's vote? Applied since docs is CTR, right?
Re: SSL/TLS best current practice
On 05/06/2015 07:22 PM, William A Rowe Jr wrote: Here is my proposed global config for httpd.conf.in http://httpd.conf.in for 2.4 and 2.2, which I believe mirrors the 'MUST' of RFC 7525. So new default configs are improved, and that's great. Any joint interest in maintaining a guide to implementing SSL/TLS best practices in the documentation for those that don't normally see our latest/greatest default configuration and/or need some extra prose around it? A start would be: * list source material for best practices * describe how known tradeoffs (such as blocking old clients) are accommodated in the specific configuration recommendations * the actual configuration related to best SSL/TLS practices from our current default SSL configs * hints on how to configure these in our past releases as well as with distributions that have their own idea of file layout/own defaults
Re: svn commit: r1681322 - /httpd/httpd/branches/2.4.x/STATUS
On Sat, May 23, 2015 at 1:20 PM, traw...@apache.org wrote: + *) fix new warnings in mod_rewrite once r1679181 was merged: + trunk patch: http://svn.apache.org/r1679712 + 2.4.x patch: trunk patch works + +1: trawick Thanks! I had this warning, fixed it, and still don't understand how it did not finish in the original commit/backport...
Re: SSL/TLS best current practice
On 23 May 2015, at 12:50, Jeff Trawick traw...@gmail.com wrote: On 05/06/2015 07:22 PM, William A Rowe Jr wrote: Here is my proposed global config for httpd.conf.in for 2.4 and 2.2, which I believe mirrors the 'MUST' of RFC 7525. So new default configs are improved, and that's great. Any joint interest in maintaining a guide to implementing SSL/TLS best practices in the documentation for those that don't normally see our latest/greatest default configuration and/or need some extra prose around it? I can help with this. -- Tim Bannister - is...@c8h10n4o2.org.uk
Re: svn commit: r1681275 - /httpd/httpd/branches/2.2.x/STATUS
On May 23, 2015 2:00 AM, rj...@apache.org wrote: + 2.2.x patch: http://people.apache.org/~rjung/patches/httpd-2.2.x-mod_log_config-more_time_formats-v2.patch +1: rjung, wrowe + rjung: I had forgotten the docs part. Added in v2 patch. OK to keep Bill's vote? IIRC we treat docs as CTR on all branches :). That would be fine in any case.
Re: svn commit: r1681297 - in /httpd/httpd/branches/2.2.x: ./ CHANGES STATUS docs/manual/mod/mod_log_config.xml modules/loggers/mod_log_config.c
Am 23.05.2015 um 11:28 schrieb Yann Ylavic: On Sat, May 23, 2015 at 11:23 AM, yla...@apache.org wrote: Author: ylavic Date: Sat May 23 09:23:13 2015 New Revision: 1681297 URL: http://svn.apache.org/r1681297 Log: Merged r979120 from trunk. [] Modified: httpd/httpd/branches/2.2.x/STATUS [] - * mod_log_config: Allow to choose request start or end time - as time stamp in log (httpd traditionally uses start, many - other components, e.g. Tomcat use end time, so they are kind - of hard to correlate). Also add more format choices for time stamps. - Needed get_request_end_time() was already ported back. - trunk patch: http://svn.apache.org/r979120 (remaining parts) - 2.4.x patch: http://svn.apache.org/r979120 (remaining parts) - 2.2.x patch: http://people.apache.org/~rjung/patches/httpd-2.2.x-mod_log_config-more_time_formats-v2.patch - +1: rjung, wrowe, ylavic - rjung: I had forgotten the docs part. Added in v2 patch. OK to keep Bill's vote? Applied since docs is CTR, right? Yes and thanks! Rainer
