On Fri, 7 Nov 2003, Henrik Nordstrom wrote:
> On Fri, 7 Nov 2003, Merton Campbell Crockett wrote:
>
> > Apache using mod_rewrite would be the answer. The <VirtualHost ...:80>
> > would need to have a redirect to 443. The problem will be the annoying
> > notices about leaving or entering a protected site.
>
> I don't see how this can be the answer.
>
> Sure, it makes things appear to work, but the https encryption becomes
> virtually useless as all/most requests are sent first unencrypted using
> HTTP (including any sensitive request details) and then repeated using
> https.
Further, no Apache is needed for the above. A plain browser redirect sent
by Squid does the same, easily configured via a redirector helper.
Regards
Henrik
Received on Fri Nov 07 2003 - 11:01:11 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:21:11 MST