Set the server up as secure - allowing insecure or secure
connection to the server but denying access to the the directory
you want as secure except through the secure server port 443
On 16 Mar 01, at 21:14, Scott Brown wrote:
> I'm probably looking for an answer to a FAQ.... tell me where it's listed,
> and I'll take it from there.
>
> I'm from a MS-IIS background - and when I want to make a directory secure,
> it's easy to tell the system via the MMC that /secure/ is to have a secure
> connection requirement.
>
> Is there any way to set Apache up such that it recognizes that a specific
> directory is supposed to be secure?
>
> I've tried a
>
> <virtualhost www.mytestdomain.com>
> ...non-ssl directives
> <Directory /secure/>
> SSLEngine on
> SSLRequireSSL
> etc..etc.. (including cert/key definitions)
> </Directory>
> </virtualhost>
>
> but it's not behaving as I would expect (at very least I would be expecting
> it to complain that my site cert's name doesnt match my testdomain's name -
> but it doesnt)... IE5.01 doesnt display the locked symbol - BUT it is saying
> that it has a cert (and no, I've not installed the cert...)
>
> Is it not possible to have a subdirectory of a domain declared and processed
> as SSL enabled under Apache/modssl/openssl??
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
----------------------------------------------------------------------
Alex Moon
email:[EMAIL PROTECTED]
Tel:020 8411 5092
Middlesex University Business School,
The Burroughs
Hendon
London
NW4 4BT
----------------------------------------------------------------------
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
