[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Re: SSL on Cobalt Qube3
- Subject: Re: [cobalt-security] Re: SSL on Cobalt Qube3
- From: Harald Kapper <hk@xxxxxxxxxx>
- Date: Sat, 24 May 2003 11:27:27 +0200
- Organization: kapper.net
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Fri, 23 May 2003 16:24:07 -0700, you wrote:
>> You wouldn't happen to know how to make the whole site
>> (/home/groups/home/web) require SSL connections, would you?
>
>/etc/httpd/conf/srm.conf has a rewrite section that forces all admin UI
>stuff to port 444. Maybe duplicate that section for regular port 80
>traffic...?
well, I opt for a .htaccess workout - in this example apache asks for SSL
and requires someone being a user on the qube to log in:
--------------------BOF--------------------------
AuthName "internal area - valid users only!"
AuthPAM_FallThrough off
AuthPAM_Enabled on
AuthType Basic
SSLRequireSSL
<Limit GET>
require valid-user
</Limit>
<Files .htaccess>
order allow,deny
deny from all
</Files>
<Files .htpasswd>
order allow,deny
deny from all
</Files>
--------------------EOF--------------------------
hth
hk