Dear all:
I have set up the following in my access.conf file to deny access to my
web server from any non-secure connection:
<Directory /usr/local/apache/htdocs>
SSLRequireSSL
</Direcotry>
When using Netscape Navigator I get a permissions denied error when I try
to go to http://webserver.com (as I hoped).
However, In IE, I am able to log in insecurely (to http://webserver.com)!
I get warnings about certificates, which I press return through multiple
times, and in the end I get though but there is no "lock" at the bottom.
However, the url bar shows https:... Every time I try to execute an action
requiring a connection to the server, I have to go through the dialogs
about bad certificates, but it always lets me through.
Any thoughts/experience with this?
thanks
Nik Ingle
Dept. Applied Physics
Stanford University
Stanford, CA 94305-4090
(650) 725-2296
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
