One method is to use the mod_rewrite module. You place the rewrite lines inside <VirtualHost _default_:443> section of your httpd.conf file. # These rewrite any requests for pages over SSL that do not have the terms 'forms, images, incl, onlineopinion' in the URL. #RewriteEngine onRewriteRule !^/(.*)(forms|images|incl|onlineopinion)/(.*)$ - [C]RewriteRule ^/(.*)$ http://%{HTTP_HOST}/$1 [R,L] # These rewrite any requests for pages that do not have the correct domain name, but which are resolved to our site to the correct# domain name.#RewriteMap lc int:tolowerRewriteCond %{SERVER_NAME} !^(.*)www\.(your domain name goes here)\.com(.*)$ [NC]RewriteRule ^/(.*)$ http://%{HTTP_HOST}/ [R,L] Note: These are extrememly quick and dirty rewrites. I needed to bang these out quick. Look on apache.org for the different syntax and options you may use.--- On Sun 01/04, Sonny Sukumar < [EMAIL PROTECTED] > wrote:From: Sonny Sukumar [mailto: [EMAIL PROTECTED]: [EMAIL PROTECTED]: Sat, 3 Jan 2004 23:51:04 -0800 (PST)Subject: How to prevent HTTPS access?Hi guys,Does anybody know how to prevent HTTPS access tocertain pages that don't need the SSL protection? Iknow how to protect sensitive pages with HTTPS, but Inoticed users can now access *any* page over an HTTPSconnection, which seems to waste our server resources.Thanks for any insight.Sonny__________________________________Do you Yahoo!?Protect your identity with Yahoo! Mail AddressGuardhttp://antispam.yahoo.com/whatsnewfree---------------------------------------------------------------------To unsubscribe, e-mail: [EMAIL PROTECTED] additional commands, e-mail: [EMAIL PROTECTED]
_______________________________________________ Join Excite! - http://www.excite.com The most personalized portal on the Web!