Re: Disable SSL for some non-SSL virtual hosts

[gianni dalmasso]

dear denny, thanks for the answer.

- about virtual hosting : maybe i didn't understtod weel; what i know is the , for the intrinsec behaviour of the SSL protocol, the web server cannot understand which host is called during the initial handshaking; it can be done only with different IP address and/or different ports.So you say i can define different virtual hosts like </Virtual HOst aa.bb.cc.dd:443>  and that apache serves correctly

- i tryed aliases and redirectoring; it don't seem to work (i put it in the single VIrtualHoSt part present in ssl.conf

Denny Valliant <[EMAIL PROTECTED]> ha scritto:

I'm pretty sure SSL does work with virtual hosts...

At any rate, you could use an alias on the SSL side re-directing to the
non SSL side... maybe...

gianni dalmasso wrote:

> Hi group.
> can someone tell me the ways to do this ?
>
> i have set a linux server with apache 2.0 + mod_ssl + tomcat.
> i have set in httpd.conf some non-SSL virtual hosts
> i have set a single SSL virtual host on 433 port in ssl.conf ( of
> course i know that SSL doesn't work with virtual hosting)
> everything works.
>
> BUT :
> - i successed in denying plain HTTP (only SSL) for some virtual hosts
> (setting DEny in /Directory part of aa.ss.cc.dd:80 virtual host in
> httpd.conf)
> - i don't know how deny the use of HTTPS for other aa.bb.cc.dd:80
> virtual hosts
>
> in short : how is possible configure a server that has multple non-SSL
> virtual hosts, one SSL virtual host, in which some of the non-SSL
> cannot be accessed via HTTPD ?
>
> thanks in advance
> bob
>
> ------------------------------------------------------------------------
> *Yahoo! Messenger*
> :
> chiamate gratuite in tutto il mondo

______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]

---

Yahoo! Messenger: chiamate gratuite in tutto il mondo