[horde] SSL and only SSL
Daniel Eckl
daniel.eckl at gmx.de
Fri Jun 25 05:14:48 PDT 2004
You can even make SSL enforcement only for a specific IP range, e.g. to
force external users to use SSL and internal can use non-ssl.
RewriteEngine on
RewriteCond %{SERVER_PORT} !^443$
RewriteCond %{REMOTE_ADDR} !^192\.168\.
RewriteRule ^/horde/(.*) https://%{SERVER_NAME}/horde/$1 [L,R]
Daniel
Zitat von Steven Stern <subscribed-lists at sterndata.com>:
> I've worked around all of it by deleting all the webmail virtualhosts and PHP
> redirects and putting this at the start of the VirtualHosts list:
>
> <VirtualHost *:80>
> ServerAdmin root at localhost.localdomain
> DocumentRoot /var/www/html
> Redirect /horde/ https://foo.com/horde/
> ServerName foo
> </VirtualHost>
>
> Now, no one can work their way into the horde directory tree without flipping
> into SSL mode.
>
> --
> Steve
>
> --
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
More information about the horde
mailing list