You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Tim Fox <ti...@blueheath.com> on 2002/02/14 14:23:19 UTC
redirecting from http -> https
I want to redirect anyone using an http:// url to the equivalent https://
url on my site.
Eg http://www.acme.com/somedir/foo.htm ->
https://www.acme.com/somedir/foo.htm
I've tried the Redirect declaration
Redirect http://www.acme.com/ https://www.acme.com
but that seems to do nothing.
Any ideas?
I guess this is a common thing to want to do.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: redirecting from http -> https
Posted by Owen Boyle <ob...@bourse.ch>.
Tim Fox wrote:
>
>
> Redirect /somedir https://www.acme.com/somedir/
>
> This seems to end up in a recursive loop -which makes sense since
> https://www.acme.com/somedir matches /somedir.
Where did you put the Redirect? It goes in the HTTP-VH, not in the
SSL_VH... Something like (cribbed from NickM's earlier answer):
<VirtualHost 12.34.56.78:443>
ServerName myvirtual.domain
SSLEngine on
</VirtualHost>
<VirtualHost _default_:80>
Redirect / https://myvirtual.domain
</VirtualHost>
This redirect will never be seen by a request on port 443 so should
never cause a loop.
Rgds,
Owen Boyle.
> > didn't you see the question and answer on the list about two hours ago
> > on this very point?
>
> No, because I only joined the list about 15 minutes ago, in order to ask the
> question.
Remarkable! It is actually quite amazing how often questions tend to be
clustered like this... Oh, and the other Q&A was on the mod_ssl list...
http://marc.theaimsgroup.com/?l=apache-modssl&m=101367928502889&w=2
Sorry!
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: starting mutliple apache server
Posted by Owen Boyle <ob...@bourse.ch>.
Santosh Deshpande wrote:
>
> Thanx owen. I will try it restarting it in the evening as it is our live
> server.
> But I am pretty sure that there were no 'httpd' or other processes using the
> port 443.
Try "netstat -a | grep 443" just to see (I'm not sure if a zombie will
show up, however...)
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: starting mutliple apache server
Posted by Santosh Deshpande <sa...@office.sourceree.com>.
Thanx owen. I will try it restarting it in the evening as it is our live
server.
But I am pretty sure that there were no 'httpd' or other processes using the
port 443.
-----Original Message-----
From: obo@bourse.ch [mailto:obo@bourse.ch]
Sent: 15 February 2002 10:10
To: users@httpd.apache.org
Subject: Re: starting mutliple apache server
Santosh Deshpande wrote:
>
> yes that was a typo. It should be read as 'Listen 10.20.30.2:80' for
second
> VH.
>
> Actually, it is working fine if I define both the VH in a single file and
> startup a single daemon.
> But when I try to one for each ( two separate conf files ) the second
httpd
> (with ssl) does not seem to start.
> Unfortunately, the SSL logging is not on. But the apache error_log has the
> following message.
>
> [ Address already in use: make_sock: could not bind to address
10.20.30.1
> port 443 ]
This error is quite clear. There are two possibilities:
- you already have an apache server running on that port (you mentioned
you tested with two instances of apache - did you shut *both* down
before trying the combined server?)
- an unclean shutdown or crash left a zombie process blocking the port,
if so, reboot will clear it.
Rgds,
Owen Boyle.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: starting mutliple apache server
Posted by Owen Boyle <ob...@bourse.ch>.
Santosh Deshpande wrote:
>
> yes that was a typo. It should be read as 'Listen 10.20.30.2:80' for second
> VH.
>
> Actually, it is working fine if I define both the VH in a single file and
> startup a single daemon.
> But when I try to one for each ( two separate conf files ) the second httpd
> (with ssl) does not seem to start.
> Unfortunately, the SSL logging is not on. But the apache error_log has the
> following message.
>
> [ Address already in use: make_sock: could not bind to address 10.20.30.1
> port 443 ]
This error is quite clear. There are two possibilities:
- you already have an apache server running on that port (you mentioned
you tested with two instances of apache - did you shut *both* down
before trying the combined server?)
- an unclean shutdown or crash left a zombie process blocking the port,
if so, reboot will clear it.
Rgds,
Owen Boyle.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: starting mutliple apache server
Posted by Santosh Deshpande <sa...@office.sourceree.com>.
yes that was a typo. It should be read as 'Listen 10.20.30.2:80' for second
VH.
Actually, it is working fine if I define both the VH in a single file and
startup a single daemon.
But when I try to one for each ( two separate conf files ) the second httpd
(with ssl) does not seem to start.
Unfortunately, the SSL logging is not on. But the apache error_log has the
following message.
[ Address already in use: make_sock: could not bind to address 10.20.30.1
port 443 ]
Here is some additional info:
All the SSL directives are in place
bash$ ./httpd -v
Server version: Apache/1.3.12 (Unix)
Server built: May 17 2001 17:30:42 ;
bash$ ./httpd -l
Compiled-in modules:
http_core.c
mod_so.c
mod_ssl.c
Santosh
-----Original Message-----
From: obo@bourse.ch [mailto:obo@bourse.ch]
Sent: 15 February 2002 08:08
To: users@httpd.apache.org
Subject: Re: starting mutliple apache server
Santosh Deshpande wrote:
>
> hi All,
> I would like to start two 'Apache servers instances' on a single
machine.
> One is to use SSL and the other without SSL. But unfortunately, I can
not
> start the SSL enabled Apache.
>
> Here is how the server/conf file looks like.
>
> Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
>
> httpd-ssl.conf :
>
> Listen 10.20.30.1:443
> NameVirtuaHost 10.20.30.1:443
> <VirtualHost 10.20.30.1:443>
> ServerName www.mydmain.com
> ....
> </VirtualHost>
>
> httpd-nossl.conf :
>
> Listen 10.20.30.1:80
> NameVirtuaHost 10.20.30.2:80
> <VirtualHost 10.20.30.2:80>
> ServerName dtd.mydmain.com
> ....
> </VirtualHost>
This is all muddled up... on the second VH, you have "Listen
10.20.30.1:80" but define "VirtualHost 10.20.30.2:80" - is this really
what's in your httpd.conf or did you just mess up the typing?
Anyway, there's more to SSL than setting up a VH on port 443.
- do you have mod_ssl or apache-SSL?
- do you have all the other SSL directives you need?
- what does it say in the error_log?
- what does it say in the ssl_engine_log?
Rgds
owen Boyle.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: starting mutliple apache server
Posted by Owen Boyle <ob...@bourse.ch>.
Santosh Deshpande wrote:
>
> hi All,
> I would like to start two 'Apache servers instances' on a single machine.
> One is to use SSL and the other without SSL. But unfortunately, I can not
> start the SSL enabled Apache.
>
> Here is how the server/conf file looks like.
>
> Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
>
> httpd-ssl.conf :
>
> Listen 10.20.30.1:443
> NameVirtuaHost 10.20.30.1:443
> <VirtualHost 10.20.30.1:443>
> ServerName www.mydmain.com
> ....
> </VirtualHost>
>
> httpd-nossl.conf :
>
> Listen 10.20.30.1:80
> NameVirtuaHost 10.20.30.2:80
> <VirtualHost 10.20.30.2:80>
> ServerName dtd.mydmain.com
> ....
> </VirtualHost>
This is all muddled up... on the second VH, you have "Listen
10.20.30.1:80" but define "VirtualHost 10.20.30.2:80" - is this really
what's in your httpd.conf or did you just mess up the typing?
Anyway, there's more to SSL than setting up a VH on port 443.
- do you have mod_ssl or apache-SSL?
- do you have all the other SSL directives you need?
- what does it say in the error_log?
- what does it say in the ssl_engine_log?
Rgds
owen Boyle.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: starting mutliple apache server
Posted by Santosh Deshpande <sa...@office.sourceree.com>.
As I mentioned earlier, port 443 is NOT busy.
What are the implications of using non default port?
Do I have to use the port number in the URL?
-----Original Message-----
From: Milind Sawant [mailto:milind.sawant@skandiabank.ch]
Sent: 14 February 2002 17:11
To: users@httpd.apache.org
Subject: RE: starting mutliple apache server
1)check if port 443 is busy using netstat -a | grep 443
2) try changing the ssl port
-----Original Message-----
From: Santosh Deshpande [mailto:santosh.deshpande@office.sourceree.com]
Sent: 14 February 2002 17:59
To: users@httpd.apache.org
Subject: starting mutliple apache server
hi All,
I would like to start two 'Apache servers instances' on a single machine.
One is to use SSL and the other without SSL. But unfortunately, I can not
start the SSL enabled Apache.
Here is how the server/conf file looks like.
Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
httpd-ssl.conf :
Listen 10.20.30.1:443
NameVirtuaHost 10.20.30.1:443
<VirtualHost 10.20.30.1:443>
ServerName www.mydmain.com
....
</VirtualHost>
httpd-nossl.conf :
Listen 10.20.30.1:80
NameVirtuaHost 10.20.30.2:80
<VirtualHost 10.20.30.2:80>
ServerName dtd.mydmain.com
....
</VirtualHost>
Startup scripts:
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-ssl/httpd-ssl.conf -D SSL
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-nossl/httpd-nossl.conf
With this I can get only the httpd without SSL working. I can not start
the httpd with SSL.
It comes up with errors
{ [Thu Feb 14 12:35:13 2002] [crit] (98)Address already in use:
make_sock: could not bind to address 10.20.30.1
port443 ]} though there is nothing happening on 443.
----------------------------------
Additional Info:
1. With a single file that includes both the vhost (httpd.conf), it
works.
( I can access www.mydmain.com securely while dtd.mydmain.com in the
non secure way)
2. The httpd.conf is in default location and I use 'apachectl startssl'
to startup.
3. DocumentRoot/ Log destinations are specified correctly ( absolute
path)
appreciate your help.
Santosh
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: starting mutliple apache server
Posted by Milind Sawant <mi...@skandiabank.ch>.
I have used this option with apache 1.3.19 and it works fine.
-----Original Message-----
From: Santosh Deshpande [mailto:santosh.deshpande@office.sourceree.com]
Sent: 14 February 2002 18:26
To: users@httpd.apache.org
Subject: RE: starting mutliple apache server
Actually, I could not start the httpd with -DSSL option.
Is the way to start the httpd corerct ( with -D SSL as an option/arg )?
cheers
-----Original Message-----
From: Milind Sawant [mailto:milind.sawant@skandiabank.ch]
Sent: 14 February 2002 17:11
To: users@httpd.apache.org
Subject: RE: starting mutliple apache server
1)check if port 443 is busy using netstat -a | grep 443
2) try changing the ssl port
-----Original Message-----
From: Santosh Deshpande [mailto:santosh.deshpande@office.sourceree.com]
Sent: 14 February 2002 17:59
To: users@httpd.apache.org
Subject: starting mutliple apache server
hi All,
I would like to start two 'Apache servers instances' on a single machine.
One is to use SSL and the other without SSL. But unfortunately, I can not
start the SSL enabled Apache.
Here is how the server/conf file looks like.
Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
httpd-ssl.conf :
Listen 10.20.30.1:443
NameVirtuaHost 10.20.30.1:443
<VirtualHost 10.20.30.1:443>
ServerName www.mydmain.com
....
</VirtualHost>
httpd-nossl.conf :
Listen 10.20.30.1:80
NameVirtuaHost 10.20.30.2:80
<VirtualHost 10.20.30.2:80>
ServerName dtd.mydmain.com
....
</VirtualHost>
Startup scripts:
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-ssl/httpd-ssl.conf -D SSL
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-nossl/httpd-nossl.conf
With this I can get only the httpd without SSL working. I can not start
the httpd with SSL.
It comes up with errors
{ [Thu Feb 14 12:35:13 2002] [crit] (98)Address already in use:
make_sock: could not bind to address 10.20.30.1
port443 ]} though there is nothing happening on 443.
----------------------------------
Additional Info:
1. With a single file that includes both the vhost (httpd.conf), it
works.
( I can access www.mydmain.com securely while dtd.mydmain.com in the
non secure way)
2. The httpd.conf is in default location and I use 'apachectl startssl'
to startup.
3. DocumentRoot/ Log destinations are specified correctly ( absolute
path)
appreciate your help.
Santosh
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: starting mutliple apache server
Posted by Santosh Deshpande <sa...@office.sourceree.com>.
Actually, I could not start the httpd with -DSSL option.
Is the way to start the httpd corerct ( with -D SSL as an option/arg )?
cheers
-----Original Message-----
From: Milind Sawant [mailto:milind.sawant@skandiabank.ch]
Sent: 14 February 2002 17:11
To: users@httpd.apache.org
Subject: RE: starting mutliple apache server
1)check if port 443 is busy using netstat -a | grep 443
2) try changing the ssl port
-----Original Message-----
From: Santosh Deshpande [mailto:santosh.deshpande@office.sourceree.com]
Sent: 14 February 2002 17:59
To: users@httpd.apache.org
Subject: starting mutliple apache server
hi All,
I would like to start two 'Apache servers instances' on a single machine.
One is to use SSL and the other without SSL. But unfortunately, I can not
start the SSL enabled Apache.
Here is how the server/conf file looks like.
Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
httpd-ssl.conf :
Listen 10.20.30.1:443
NameVirtuaHost 10.20.30.1:443
<VirtualHost 10.20.30.1:443>
ServerName www.mydmain.com
....
</VirtualHost>
httpd-nossl.conf :
Listen 10.20.30.1:80
NameVirtuaHost 10.20.30.2:80
<VirtualHost 10.20.30.2:80>
ServerName dtd.mydmain.com
....
</VirtualHost>
Startup scripts:
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-ssl/httpd-ssl.conf -D SSL
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-nossl/httpd-nossl.conf
With this I can get only the httpd without SSL working. I can not start
the httpd with SSL.
It comes up with errors
{ [Thu Feb 14 12:35:13 2002] [crit] (98)Address already in use:
make_sock: could not bind to address 10.20.30.1
port443 ]} though there is nothing happening on 443.
----------------------------------
Additional Info:
1. With a single file that includes both the vhost (httpd.conf), it
works.
( I can access www.mydmain.com securely while dtd.mydmain.com in the
non secure way)
2. The httpd.conf is in default location and I use 'apachectl startssl'
to startup.
3. DocumentRoot/ Log destinations are specified correctly ( absolute
path)
appreciate your help.
Santosh
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: starting mutliple apache server
Posted by Milind Sawant <mi...@skandiabank.ch>.
1)check if port 443 is busy using netstat -a | grep 443
2) try changing the ssl port
-----Original Message-----
From: Santosh Deshpande [mailto:santosh.deshpande@office.sourceree.com]
Sent: 14 February 2002 17:59
To: users@httpd.apache.org
Subject: starting mutliple apache server
hi All,
I would like to start two 'Apache servers instances' on a single machine.
One is to use SSL and the other without SSL. But unfortunately, I can not
start the SSL enabled Apache.
Here is how the server/conf file looks like.
Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
httpd-ssl.conf :
Listen 10.20.30.1:443
NameVirtuaHost 10.20.30.1:443
<VirtualHost 10.20.30.1:443>
ServerName www.mydmain.com
....
</VirtualHost>
httpd-nossl.conf :
Listen 10.20.30.1:80
NameVirtuaHost 10.20.30.2:80
<VirtualHost 10.20.30.2:80>
ServerName dtd.mydmain.com
....
</VirtualHost>
Startup scripts:
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-ssl/httpd-ssl.conf -D SSL
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-nossl/httpd-nossl.conf
With this I can get only the httpd without SSL working. I can not start
the httpd with SSL.
It comes up with errors
{ [Thu Feb 14 12:35:13 2002] [crit] (98)Address already in use:
make_sock: could not bind to address 10.20.30.1
port443 ]} though there is nothing happening on 443.
----------------------------------
Additional Info:
1. With a single file that includes both the vhost (httpd.conf), it
works.
( I can access www.mydmain.com securely while dtd.mydmain.com in the
non secure way)
2. The httpd.conf is in default location and I use 'apachectl startssl'
to startup.
3. DocumentRoot/ Log destinations are specified correctly ( absolute
path)
appreciate your help.
Santosh
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
starting mutliple apache server
Posted by Santosh Deshpande <sa...@office.sourceree.com>.
hi All,
I would like to start two 'Apache servers instances' on a single machine.
One is to use SSL and the other without SSL. But unfortunately, I can not
start the SSL enabled Apache.
Here is how the server/conf file looks like.
Server: RHLinux, has 2 IP address ( 10.20.30.1 and 10.20.30.2 )
httpd-ssl.conf :
Listen 10.20.30.1:443
NameVirtuaHost 10.20.30.1:443
<VirtualHost 10.20.30.1:443>
ServerName www.mydmain.com
....
</VirtualHost>
httpd-nossl.conf :
Listen 10.20.30.1:80
NameVirtuaHost 10.20.30.2:80
<VirtualHost 10.20.30.2:80>
ServerName dtd.mydmain.com
....
</VirtualHost>
Startup scripts:
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-ssl/httpd-ssl.conf -D SSL
daemon /usr/sbin/httpd -f
/usr/local/apache/conf/httpd-nossl/httpd-nossl.conf
With this I can get only the httpd without SSL working. I can not start
the httpd with SSL.
It comes up with errors
{ [Thu Feb 14 12:35:13 2002] [crit] (98)Address already in use:
make_sock: could not bind to address 10.20.30.1
port443 ]} though there is nothing happening on 443.
----------------------------------
Additional Info:
1. With a single file that includes both the vhost (httpd.conf), it
works.
( I can access www.mydmain.com securely while dtd.mydmain.com in the
non secure way)
2. The httpd.conf is in default location and I use 'apachectl startssl'
to startup.
3. DocumentRoot/ Log destinations are specified correctly ( absolute
path)
appreciate your help.
Santosh
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: redirecting from http -> https
Posted by Tim Fox <ti...@blueheath.com>.
It seems that is my solution.
Thanks for your help.
> -----Original Message-----
> From: Kevin M. Shortt [mailto:shortt@cgicafe.com]
> Sent: 14 February 2002 18:01
> To: users@httpd.apache.org
> Subject: RE: redirecting from http -> https
>
>
>
> > I don't have any virtual hosts, I only have one DocumentRoot,
> and I want to
> > force SSL across the site.
>
>
> errrt...no virutal hosts. That's the prob.
> You need them.
>
>
> http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#ToC17
> or
> http://www.modssl.org/docs/2.3/ssl_faq.html#ToC13
>
>
>
> Good Luck..
>
> -k
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: redirecting from http -> https
Posted by "Kevin M. Shortt" <sh...@cgicafe.com>.
> I don't have any virtual hosts, I only have one DocumentRoot, and I want to
> force SSL across the site.
errrt...no virutal hosts. That's the prob.
You need them.
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#ToC17
or
http://www.modssl.org/docs/2.3/ssl_faq.html#ToC13
Good Luck..
-k
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: redirecting from http -> https
Posted by Tim Fox <ti...@blueheath.com>.
I don't have any virtual hosts, I only have one DocumentRoot, and I want to
force SSL across the site.
I have no need of 2 docroots since I only have one set of documents that I
want to be served over HTTPS everytime.
I do not want these documents to be ever served over HTTP.
The idea is that if the user attempts to access any of the resources on HTTP
they will be redirected to the same resource but over the HTTPS protocol.
Are you suggesting I need to make 2 copies of my web site and put it in
virtual servers for this to work?
> -----Original Message-----
> From: Kevin M. Shortt [mailto:shortt@cgicafe.com]
> Sent: 14 February 2002 14:30
> To: users@httpd.apache.org
> Subject: RE: redirecting from http -> https
>
>
>
> On Thu, 14 Feb 2002, Tim Fox wrote:
> >
> > Redirect /somedir https://www.acme.com/somedir/
>
> > which also seems to end up in a loop
>
>
> are your DocumentRoot's the same place for the https
> and the http virutal host?
>
> That would most likely loop it.
> Your syntax is correct.
>
> -k
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: redirecting from http -> https
Posted by "Kevin M. Shortt" <sh...@cgicafe.com>.
On Thu, 14 Feb 2002, Tim Fox wrote:
>
> Redirect /somedir https://www.acme.com/somedir/
> which also seems to end up in a loop
are your DocumentRoot's the same place for the https
and the http virutal host?
That would most likely loop it.
Your syntax is correct.
-k
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: redirecting from http -> https
Posted by Tim Fox <ti...@blueheath.com>.
> -----Original Message-----
> From: obo@bourse.ch [mailto:obo@bourse.ch]
> Sent: 14 February 2002 13:32
> To: users@httpd.apache.org
> Subject: Re: redirecting from http -> https
>
>
> Tim Fox wrote:
> >
> > I want to redirect anyone using an http:// url to the
> equivalent https://
> > url on my site.
> >
> > Eg http://www.acme.com/somedir/foo.htm ->
> > https://www.acme.com/somedir/foo.htm
> >
> > I've tried the Redirect declaration
> >
> > Redirect http://www.acme.com/ https://www.acme.com
> >
>
> Read more carefully the note on "Redirect" - it takes a local path
> relative to the docroot as its first argument, not a full URL.
I tried that - it ended up in a recursive loop.
Specifically I tried:
Redirect /somedir https://www.acme.com/somedir/
This seems to end up in a recursive loop -which makes sense since
https://www.acme.com/somedir matches /somedir.
I have also tried:
Redirect / https://www.acme.com/
which also seems to end up in a loop
> Also,
> didn't you see the question and answer on the list about two hours ago
> on this very point?
>
No, because I only joined the list about 15 minutes ago, in order to ask the
question.
> Rgds,
>
> Owen Boyle.
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: redirecting from http -> https
Posted by Owen Boyle <ob...@bourse.ch>.
Tim Fox wrote:
>
> I want to redirect anyone using an http:// url to the equivalent https://
> url on my site.
>
> Eg http://www.acme.com/somedir/foo.htm ->
> https://www.acme.com/somedir/foo.htm
>
> I've tried the Redirect declaration
>
> Redirect http://www.acme.com/ https://www.acme.com
>
Read more carefully the note on "Redirect" - it takes a local path
relative to the docroot as its first argument, not a full URL. Also,
didn't you see the question and answer on the list about two hours ago
on this very point?
Rgds,
Owen Boyle.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org