secure HTTP

Hello there,

I am starting learning Secure HTTP.
My problem us that I did add

SSLProtocol -sll + SSLv2
SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP

I didn't create any certificate at the moment. but if I
do :
https://192.168.... => works OK
and
http://192.168 ... => works OK as well !!!!!

- How can force it to be Secure and NOT non secure ???

Originally, I need to have a secure one for a specific directory
It seems that SSL protocol and SSL Cipher cannot be placed into
<Directory>
......
</Directory>

is there another way to get secure a specific path ????
thanks in advance for your help

Stephane

On 2004-12-13, Stephane <root@root.com> wrote:
> is there another way to get secure a specific path ????
> thanks in advance for your help

You can use a Redirect in a <Location> block to redirect http to https.
Or rewrite more or less for the same results.

Davide

--
Q: Does Bill Gates use public domain software?
A: Yes, as all of the public has become Bill Gates' domain.

On Mon, 13 Dec 2004 09:46:13 +0000, Davide Bianchi wrote:

> On 2004-12-13, Stephane <root@root.com> wrote:
>> is there another way to get secure a specific path ????
>> thanks in advance for your help
>
> You can use a Redirect in a <Location> block to redirect http to https.
> Or rewrite more or less for the same results.
>
> Davide

I just have created a another folder and a redirection into a folder :
'/var/www/html/status'
Into 'httpd.conf'

<Location /status>
SSLProtocol -all +SSLv2
SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP
</Location>

Error message : httpd failed. The error was: Stopping httpd: [FAILED]
Starting httpd: Syntax error on line 354 of /etc/httpd/conf/httpd.conf:
SSLProtocol not allowed here
[FAILED]
This is somethin I found into HOWTO !?!??


- DO you know how I can FORCE this '/status' folder, to be in Secure mode
ONLY ??

Thanks

Stephane

On 2004-12-13, Stephane <root@root.com> wrote:
> Error message : httpd failed. The error was: Stopping httpd: [FAILED]
> Starting httpd: Syntax error on line 354 of /etc/httpd/conf/httpd.conf:
> SSLProtocol not allowed here

Usually, the whole SSL stuff is enclosed in a big <VirtualHost> block,
maybe you should check the whole httpd.conf.

> This is somethin I found into HOWTO !?!??

The example httpd.conf shipped with mod_ssl is a working example.
And the documentation on the mod_ssl web site are quite clear.

> - DO you know how I can FORCE this '/status' folder, to be in Secure mode
> ONLY ??

In the "normal" (non-https) VHost you put a <Location /status> that
redirect to the https part, that's about it. But you need to have the
https part working first.

Davide

--
Windows NT: Only 16 megs needed to play Minesweeper!

On Mon, 13 Dec 2004 11:08:48 +0000, Davide Bianchi wrote:

> On 2004-12-13, Stephane <root@root.com> wrote:
>> Error message : httpd failed. The error was: Stopping httpd: [FAILED]
>> Starting httpd: Syntax error on line 354 of /etc/httpd/conf/httpd.conf:
>> SSLProtocol not allowed here
>
> Usually, the whole SSL stuff is enclosed in a big <VirtualHost> block,
> maybe you should check the whole httpd.conf.
>
>> This is somethin I found into HOWTO !?!??
>
> The example httpd.conf shipped with mod_ssl is a working example.
> And the documentation on the mod_ssl web site are quite clear.
>
>> - DO you know how I can FORCE this '/status' folder, to be in Secure mode
>> ONLY ??
>
> In the "normal" (non-https) VHost you put a <Location /status> that
> redirect to the https part, that's about it. But you need to have the
> https part working first.
>
> Davide

OK thanks... I probably need to reconsider my httpf.conf :-)
I just add some part
- simple html webpage
- Login + passrd acces...
- now SSL.....
2) just a very quick question..
When I put a zip file (for instance) if I click on the link, I have a pop
up menu saying "open or save"
However, if the extension is a TXT or PDF, it doesn't ask me any question
an open it straight !!
- How can I force this pop up menu of "Well-known" files ?

PS I put for all the files : chmod 755

Thanks

Stephane