Re: forcing secure via name (off topic?)

Tue, 11 May 1999 06:57:01 -0700 

I am curious.  IF the server certificate had a common name www.xxx.org and
the virtual host is yyy.xxx.org, should the browser considering the server
a fake?


On Tue, 11 May 1999, Derek Smith wrote:

> Eric,
> 
> What you need to do is to add the IP address and 'secure' hostname to one
> line in your hosts file, then add the below to you httpd.conf.  I assume you
> don't mean all hosts('secure' and 'www') from 1 IP.  You will need a DNS
> entry for secure.hostname.org.
> 
> <VirtualHost secure.hostname.org:443>
> #VirtualHost Config Directives
> SSLEngine On
> # Other SSL Config Directives
> </VirtualHost>
> 
> <VirtualHost secure.hostname.org>
> Redirect / https://secure.hostname.org
> </VirtualHost>
> 
> <VirtualHost www.hostname.org>
> #Virtual Host Config Directives
> </VirtualHost>
> 
> 
> Regards,
> 
> Derek Smith
> Systems Administrator/Developer
> MotorTR@K - www.motortrak.com
> 
> 
> Eric Gus wrote:
> 
> > Server Version: Apache/1.3.6 (Unix) mod_perl/1.19 PHP/3.0.7 mod_ssl/2.2.8
> > OpenSSL/0.9.2b
> >
> > works fine as http and as https.
> >
> > How can I force ssl when a user uses the url http://secure.hostname.org
> > (redirect/rewrite to https://secure.hostname.org) and deny ssl for
> > http(s)://www.hostname.org
> >
> > I'd like to do this using a single ip.
> >
> > I have 2 other virtuals (ip based), 1 of which will work under 80 or 443
> > (as wanted)
> >
> > Do I have to do any dns entry changes?
> >
> > the server currently responds as hostname.org and www.hostname.org
> >
> > Gus
> >
> > ______________________________________________________________________
> > Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
> > User Support Mailing List                      [EMAIL PROTECTED]
> > Automated List Manager                            [EMAIL PROTECTED]
> 
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
> User Support Mailing List                      [EMAIL PROTECTED]
> Automated List Manager                            [EMAIL PROTECTED]
> 

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to