[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Re: SSL on Cobalt Qube3

Subject: Re: [cobalt-security] Re: SSL on Cobalt Qube3
From: Harald Kapper <hk@xxxxxxxxxx>
Date: Sat, 24 May 2003 11:27:27 +0200
Organization: kapper.net
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Fri, 23 May 2003 16:24:07 -0700, you wrote:

>> You wouldn't happen to know how to make the whole site
>> (/home/groups/home/web) require SSL connections, would you?
>
>/etc/httpd/conf/srm.conf has a rewrite section that forces all admin UI 
>stuff to port 444. Maybe duplicate that section for regular port 80 
>traffic...?

well, I opt for a .htaccess workout - in this example apache asks for SSL
and requires someone being a user on the qube to log in:
--------------------BOF--------------------------
AuthName "internal area - valid users only!"
AuthPAM_FallThrough off
AuthPAM_Enabled on
AuthType Basic
SSLRequireSSL 

<Limit GET>
require valid-user
</Limit>

<Files .htaccess>
order allow,deny
deny from all
</Files>

<Files .htpasswd>
order allow,deny
deny from all
</Files>
--------------------EOF--------------------------

hth
hk

References:
- [cobalt-security] SSL on Cobalt Qube3
  - From: Hugh Taylor
- Re: [cobalt-security] SSL on Cobalt Qube3
  - From: Bruce Timberlake
- Re: [cobalt-security] SSL on Cobalt Qube3
  - From: Hugh Taylor
- [cobalt-security] Re: SSL on Cobalt Qube3
  - From: Bruce Timberlake

Prev by Date: [cobalt-security] Re: SSL on Cobalt Qube3
Next by Date: [cobalt-security] help new and niave
Previous by thread: [cobalt-security] Re: SSL on Cobalt Qube3
Next by thread: Re: [cobalt-security] SSL on Cobalt Qube3

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index