And if you can't seperate the root directorys of the secure and not secure
servers, you can setup and aliases directory under the secure server and it
will be the only one that can see that dir.
> On Fri, 9 Feb 2001, Daniel Tryba wrote:
>
> >On Thu, Feb 01, 2001 at 04:29:09PM -0800, Michael Con
On Fri, 9 Feb 2001, Daniel Tryba wrote:
>On Thu, Feb 01, 2001 at 04:29:09PM -0800, Michael Conley wrote:
>> I have several PHP files that I only want users to be able to access via
>> HTTPS. How can I control that on an Apache 1.3.14 server running on RedHat
>> 7? I have openssl and mod_ssl wor
http://www.modssl.org/docs/2.6/ssl_reference.html#ToC22
jason
- Original Message -
From: "Daniel Tryba" <[EMAIL PROTECTED]>
To: "Michael Conley" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Friday, February 09, 2001 12:24 PM
Subject: Re: [PHP]
> On Thu, Feb 01, 2001 at 04:29:09PM -0800, Michael Conley wrote:
> > I have several PHP files that I only want users to be able to access via
> > HTTPS.
One way is to place these files only where the https server can see them.
heres an example:
.
.
DocumentRoot "/secure/secure_di
HTTPS is set to "on", at least on my Apache when SSL is enabled.
it's undefined when it's not.
this is what I would do (untested code below):
function UsingHTTPS()
{
$HTTPS = getenv("HTTPS");
return ($HTTPS == "on");
}
function UsingHTTP() // might be useful?
{
return
On Thu, Feb 01, 2001 at 04:29:09PM -0800, Michael Conley wrote:
> I have several PHP files that I only want users to be able to access via
> HTTPS. How can I control that on an Apache 1.3.14 server running on RedHat
> 7? I have openssl and mod_ssl working fine. Currently, I can access all of
>
I think your best bet would be to use cookies tagged as secure. My
understanding is that if a cookie is tagged as secure, then the web server
should not give any scripting language access to it (i.e. if you have a
secure cookie LOGGEDIN, then PHP would NOT have $LOGGEDIN set [use isset] if
the use
I have several PHP files that I only want users to be able to access via
HTTPS. How can I control that on an Apache 1.3.14 server running on RedHat
7? I have openssl and mod_ssl working fine. Currently, I can access all of
the files on my site via either http or https. I want to keep certain f
8 matches
Mail list logo
