I'm probably looking for an answer to a FAQ.... tell me where it's listed,
and I'll take it from there.
I'm from a MS-IIS background - and when I want to make a directory secure,
it's easy to tell the system via the MMC that /secure/ is to have a secure
connection requirement.
Is there any way to set Apache up such that it recognizes that a specific
directory is supposed to be secure?
I've tried a
<virtualhost www.mytestdomain.com>
...non-ssl directives
<Directory /secure/>
SSLEngine on
SSLRequireSSL
etc..etc.. (including cert/key definitions)
</Directory>
</virtualhost>
but it's not behaving as I would expect (at very least I would be expecting
it to complain that my site cert's name doesnt match my testdomain's name -
but it doesnt)... IE5.01 doesnt display the locked symbol - BUT it is saying
that it has a cert (and no, I've not installed the cert...)
Is it not possible to have a subdirectory of a domain declared and processed
as SSL enabled under Apache/modssl/openssl??
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
