Read this one - I made one major mistake
in the last one - oops.
> Well, since your in the seawolf list,
> you must have RH7.1 installed. :-)
>
> Firstly you need to install apache.
> The default full install allows http:
> and https: access to the /var/www/html
> directory.
>
> The SSL certificate that gets generated
> works fine - though you need to accept
> the actual certificate each time you
> restart your browser and the hostname
> is localhost - never bothered to work
> out how to generate my own.
> I'm sure it's in the docs somewhere,
> if not someone should know the script
> that gets run during install - but you
> don't REALLY need to - it works as is.
>
> If you want to disable http: access
> to some web served files
> (you already have https: access) then
> the easiest thing to do is create a
> separate directory for https: and only
> put "mailman" in that directory.
>
> Checking one of my /etc/httpd/conf/httpd.conf:
>
> Look for "## SSL Virtual Host Context"
>
> about 14 lines down from that you find:
>
> DocumentRoot "/var/www/html"
>
> change this to the directory you want for
> https: e.g.
>
> DocumentRoot "/var/www/https"
Oops - major typing error:
DocumentRoot "/var/www/ssl"
>
> then create the directory e.g.
>
> "mkdir /var/www/ssl"
>
> copy everything you want into that directory
> and below it
>
> then do this to ensure the protections
> are readable (but of course this will
> stuff anything up that needs to be writable
> - but I don't use mailman so I don't know
> if it writes files in the web directory
> and of course that is really bad to do
> that anyway - best to configure it to
> keep data files away from the https:
> directory)
>
> Set protections:
>
> chmod 755 /var/www/ssl
> find /var/www/ssl -exec chmod 755 "{}" \;
>
> and finally:
>
> /etc/rc.d/init.d/httpd restart
>
> And now you have a secure directory that
> is separate from the non-secure directory
> (if you didn't pick the wrong name for the
> directory :-)
>
> To access it just type:
> https://servername/
>
> and accept the certificate (but don't
> install it since it really isn't a good
> idea)
>
> to get to /var/www/ssl/index.html
> (or whatever else)
>
> If anyone can see a major problem here
> just point it out - it works but I'm
> not an apache guru regarding what holes
> this may create if any.
>
> -Cheers
> -Andrew Smith
> --
> MS ... if only he hadn't been hang gliding!
>
>> I run mailman program for mailing list, same as this one, and want to
>> make the web portion of it use https instead of regular.
>>
>> How do I make users have to use that and where do the files go and and
>> how is the config setup? I am not sure what to read and look at to
>> make this happen. Do certificates have to be used or something for
>> this and are they free to make up and use?
>>
>> Mike Chambers
>> Netlyncs
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
