Daminto Lie wrote: > Hi, > > I'd like to be able to set up https for the squirrelmail i have so > that user's username and password are securely protected. I wonder if > anyone who might have done this, would like to share some ideas with me. > > I've got squirrelmail 1.4.6 version and my machine runs on windows XP Pro. > > Thank you in advance > > ------------------------------------------------------------------------ > Switch to Yahoo!7 Mail: Transfer all your contacts and emails from > Hotmail and other providers to Yahoo!7 Mail. Switch now > <http://au.docs.yahoo.com/mail/trueswitch_info.html> > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > ------------------------------------------------------------------------ > > -- > squirrelmail-users mailing list > Posting Guidelines: http://www.squirrelmail.org/wiki/MailingListPostingGuidelines > List Address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx > List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user > List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 > List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users This is really simple in the apache webserver. I am assuming you have apache configured for ssl (port 443). If not, stop now and go to the apache web site and configure for ssl. That's where all the work is. Next, be aware that https is IP address specific. Since all of the information in the header is encrypted, the SSL domain needs its own IP address. Here is how it looks for my domain: <IfModule mod_ssl.c> <VirtualHost 208.64.65.180:443> ServerName webmail.mtnlion.com UseCanonicalName Off DocumentRoot /usr/local/webmail CustomLog /var/log/httpd/webmail.mtnlion.com_access_log combined ErrorLog /var/log/httpd/webmail.mtnlion.com_error_log SSLEngine on SSLVerifyClient none SSLCertificateFile /path-to/webmail.mtnlion.com.crt SSLCertificateKeyFile /path-to/webmail.mtnlion.com.key LimitRequestLine 16000 <Directory "/usr/local/webmail"> Options +Includes +ExecCGI +multiviews Order allow,deny Allow from all </Directory> </VirtualHost> </IfModule> In my case, I created a subdomain webmail.mtnlion.com which is a virtual host. I have 2 virtual host setups: one for ssl and one for port 80 http. The port 80 set up just has a redirect <VirtualHost 208.64.65.180:80> ServerName webmail.mtnlion.com ServerAlias www.webmail.mtnlion.com UseCanonicalName Off CustomLog /var/log/httpd/webmail.mtnlion.com_access_log combined ErrorLog /var/log/httpd/webmail.mtnlion.com_error_log redirect permanent / https://webmail.mtnlion.com/ </VirtualHost> That redirect automatically transfers any port 80 request to https. By the way, webmail.mtnlion.com has its own ip address. Remember, you can only have one domain with one ip address for https. If you are going to configure apache for ssl, take your time and follow all the steps. There are many good sources of information on the web. Just google what you need. SM itself needs no special configuration for running under https (no plugins needed either with this setup). Bob Bob ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ -- squirrelmail-users mailing list Posting Guidelines: http://www.squirrelmail.org/wiki/MailingListPostingGuidelines List Address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
