Hi.
I have a pound config that includes the following listeners. I have added
two new services at the end of each of the listeners. The idea is to
redirect the user to a proper url. This is necessary for a PCI security
scan, which is now complaining that 500 errors are PCI failures.
Shouldn't this work? If not, what is the right way to approach this problem?
Rob
ListenHTTP
Address 0.0.0.0
Port 80
Service
HeadRequire "(Host: www.example.com)"
BackEnd
Address 127.0.0.1
Port 8970
End
End
Service
HeadRequire "(Host: secure.example.com)"
Redirect "https://secure.example.com";
End
Service
Redirect "https://secure.example.com";
End
End
ListenHTTPS
Address 0.0.0.0
Port 443
Cert "/etc/pound/secure.example.com.pem"
Ciphers "-ALL +SSLv3 +TLSv1 HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL"
xHTTP 2
Service
HeadRequire "secure.contractpal.com"
BackEnd
Address 127.0.0.1
Port 8970
End
End
Service
Redirect "https://secure.example.com";
End
End
