[thelist] Apache SSL setup

Robert Gormley robert at pennyonthesidewalk.com
Mon May 23 07:31:10 CDT 2005


Dave Merrill wrote:

>I don't care about :80 or :81 at all. I want to block, i.e., not respond to,
>*any* non-ssl connections on *any* port. The interesting part of "Listen
>0.0.0.0:80" isn't ":80", it's "0.0.0.0", which I'm hoping is an impossible
>url that can't ever get routed to this machine, effectively making the
>ssl-spec'd port the only one we respond to.
>
>Make sense? How else do you require ssl for *all* connections?
>
>Dave Merrill
>
>
>  
>
Aha. I haven't tried this, but the theory is sound. Remove the default
site and any virtual hosts, and insert them all into the mod_ssl
directive block?

Rob


More information about the thelist mailing list