[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] extra detail on the ssl redirection problem
- Subject: Re: [cobalt-security] extra detail on the ssl redirection problem
- From: "Jelmer Jellema" <cobalt@xxxxxxxxxxxxxxx>
- Date: Thu, 28 Feb 2002 23:45:21 +0100
- Organization: Spin in het Web (www.spininhetweb.nl)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
From: "duncan gray" <duncanrobertgray@xxxxxxxxx>
> As soon as you type in www.mydomain.co.uk/admin it
> redirects to
> http://www.mydomain.co.uk:81/.cobalt/sysManage/index.html
>
> :81 being the port number which isnt the port used for
> ssl encryption so it is a case of changing the port
> that the admin pages are run on how do I do this?
> E.g. to the same port that SSL runs on.
> i guess I would then be able to type in
> https://www.mydomain.co.uk/.cobalt/sysManage/index.html
> (droping off the port, as the https which is
> understood by the browswer will make sure it tansmits
> on that port), The question I would then have is would
> all the links inthe pages redirect to mydomainco.uk:81
> .. If so where are these pages held so I can change
> them.
The strange thing is, it does get redirected to
https://www.mydomain.nl:81/.cobalt/bla
That is quite strange maybe? https, but to port 81. Why, then, is the admin
server listening on port 444? It's getting late so maybe it's just me not
thinking clear.
netstat shows the admin connections going to port 81
The files, by the way are in /usr/admserv (on a raq 4).
Jelmer
-----------------------------------------------------------------
Jelmer Jellema - Spin in het Web
www.spininhetweb.nl
Spin in het Web: Alle Touwtjes In Handen
-----------------------------------------------------------------
Spin in het Web is de producent van:
www.visinhetnet.nl: Niet Het Laatste Nieuws