Well, since your in the seawolf list,
you must have RH7.1 installed. :-)
Firstly you need to install apache.
The default full install allows http:
and https: access to the /var/www/html
directory.
The SSL certificate that gets generated
works fine - though you need to accept
the actual certificate each time you
restart your browser and the hostname
is localhost - never bothered to work
out how to generate my own.
I'm sure it's in the docs somewhere,
if not someone should know the script
that gets run during install - but you
don't REALLY need to - it works as is.
If you want to disable http: access
to some web served files
(you already have https:1 access) then
the easiest thing to do is create a
separate directory for https: and only
put "mailman" in that directory.
Chacking one of my /etc/httpd/conf/httpd.conf:
Look for "## SSL Virtual Host Context"
about 14 lines down from that you find:
DocumentRoot "/var/www/html"
change this to the directory you want for
https: e.g.
DocumentRoot "/var/www/https"
then create the directory e.g.
"mkdir /var/www/ssl"
copy everything you want into that directory
and below it
then do this to ensure the protections
are readable (but of course this will
stuff anything up that needs to be writable
- but I don't use mailman so I don't know
if it writes files in the web directory
and of course that is really bad to do
that anyway - best to configure it to
keep data files away from the https:
directory)
Set protections:
chmod 755 /var/www/ssl
find /var/www/ssl -exec chmod 755 "{}" \;
and finally:
/etc/rc.d/init.d/httpd restart
And now you have a secure directory that
is separate from the non-secure directory
(if you didn't pick the wrong name for the
directory :-)
To access it just type:
https://servername/
and accept the certificate (but don't
install it since it really isn't a good
idea)
to get to /var/www/ssl/index.html
(or whatever else)
If anyone can see a major problem here
just point it out - it works but I'm
not an apache guru regarding what holes
this may create if any.
-Cheers
-Andrew Smith
--
MS ... if only he hadn't been hang gliding!
> I run mailman program for mailing list, same as this one, and want to
> make the web portion of it use https instead of regular.
>
> How do I make users have to use that and where do the files go and and
> how is the config setup? I am not sure what to read and look at to
> make this happen. Do certificates have to be used or something for
> this and are they free to make up and use?
>
> Mike Chambers
> Netlyncs
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
