Slightly OT, but check out the online docs at www.apache.org, and look
at <VirtualHost>, and .htaccess.
The trick is to keep those things that are secure only in a separate
directory hierarchy than those that are available on clear http.
On my site, I have a separate branch at the root level for secure only,
clear only, and common (accessible either way). Virtual hosts let you
define different locations (Oh, yeah, pay attention to the <Location>
directive too) and specify the filesystem path through aliases (look for
that too).
HTH
Lou
Michael Conley wrote:
>
> Did anybody have any thoughts on this?
>
> -----Original Message-----
> From: Michael Conley [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, December 21, 2000 10:16 PM
> To: '[EMAIL PROTECTED]'
> Subject: Dumb question- Sorry
>
> I am very new to SSL. I have set up my Apache web server on Red Hat Linux
> 7. I have installed OpenSSL/mod_ssl. I can now attach to the web server
> using either http or https.
>
> My question is how do I control which files can be accessed via http and
> which can only be accessed by https? I don't mind people hitting the main
> (home) page via http, but that will be about all I want accessible unless we
> move to https. How do I control which protocol can be used to access
> various files?
>
> I'm sure this shows my inexperience.
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
