** Reply to note from "Don Smith" <[EMAIL PROTECTED]> Thu, 14 Sep 2000 10:42:14 -0700
>
> Hi all, new to this ssl thing. I am pretty familiar with regular Apache,
> but this ssl stuff is greek to me, but I'm getting it slowly! :-) Tried
> Apache-ssl and got it working, wasn't very easy. So, he
If my memory serves me their is a directive SSLRequireSSL that you may
enlose in a Location, Directory, VirtualHost, Or Files scope...
>-Original Message-
>From: Don Smith [mailto:[EMAIL PROTECTED]]
>Sent: Thursday, September 14, 2000 1:42 PM
>To: [EMAIL PROTECTED]
>Subject: How to restri
Don Smith wrote:
> I would like to restrict a portion of our web site to ONLY allow https
> connections, NOT http.
> And have the rest of the site to ONLY allow http, NOT https.
> Currently I can get to everywhere with both http and https on my test system.
Here's my tuppence-worth:
You have to
Hi again, well, I think I'm close!
When I go to URL http://domain.com/secureSection
I get sent to https://domain.com/secureSection/index.htm and the page displays
But, I can either go http or https to domain.com
This is all on a test machine for the moment.
What am I missing so if I go to https://
Why not just use a different document root for the secure and insecure
sites? Put symbolic links from the HTTPS root into the regular root for
directories that you want to make available insecurely as well.
Jamie
At 02:01 PM 9/14/00 , Carlos Ramirez wrote:
You can use mod_rewrite.
Example:
R
You can use mod_rewrite.
Example:
RewriteEngine On
RewriteCond %{REQUEST_URI} ^/secureSection.*
RewriteCond %{HTTPS} !=on
RewriteRule ^/(.*) https://www.mydomain.com/$1 [R]
-Carlos
Don Smith wrote:
Hi all, new to this ssl thing.
I am pretty familiar with regular Apache, but this ssl stuff i
