-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu 2007-05-03 14:36:39 -0400, Rainer Sokoll wrote: > On Thu, May 03, 2007 at 10:49:21AM -0700, Don Russell wrote: >> Rainer Sokoll wrote: > >> > RedirectMatch permanent ^/(.*) https://webmail.example.com/$1 > >> Though that may work in many cases, the reason I do not like it is >> because the issue is not to change a request on port 80 to port 443,the >> point is to ensure https is being used. > > This is exactly what Redirect does: Forcing the use of https. I do not > understand your objection - maybe I'm missing something obvious? Don is pointing out that the case where this is triggered (inside the VirtualHost :80 container) doesn't guarantee that https is actually not being used. That is, activity on port 80 implies (but does not guarantee) that TLS is not in use. And activity on port 443 implies (but does not guarantee) that TLS *is* in use. Testing that the HTTPS environment variable provided by mod_ssl is set to "on" guarantees that TLS is actually in use. In practice, those implications are usually correct (and as a server admin, you can enforce them if you choose to). But the snippet as a generic snippet isn't guaranteed to do the right thing in all cases. hth, --dkg -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Processed by Mailcrypt 3.5.8+ <http://mailcrypt.sourceforge.net/> iD8DBQFGOi1aiXTlFKVLY2URAuo9AKC3kfIjQ/IL6dTz5XbHN6TrBSacYQCeN+gM X8cfNN1oHPNteGAdeo7weH4= =sXlP -----END PGP SIGNATURE----- ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ -- squirrelmail-users mailing list Posting Guidelines: http://www.squirrelmail.org/wiki/MailingListPostingGuidelines List Address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
