LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page secure http
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-08-2005, 02:24 AM   #1
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Rep: Reputation: 30
secure http

I have a webserver where the http directory is /var/www/html. It opens in port 80. Can i setup another directory /var/www/html/secure which can only be open by https(443). If so where should i make the change.
SAnjib Gupta
 
Old 09-08-2005, 03:06 AM   #2
sin
LQ Newbie
 
Registered: Jun 2005
Location: UK
Distribution: Slackware
Posts: 28

Rep: Reputation: 15
assuming your using apache with mod_ssl

edit the DocumentRoot settiing in /etc/apache/mod_ssl.conf
 
Old 09-08-2005, 06:24 AM   #3
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Original Poster
Rep: Reputation: 30
thanks
it is working fine

Sanjib Gupta
 
Old 09-13-2005, 12:22 PM   #4
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
You might want to reconsider having your HTTPS content as a subdirectory of your HTTP content.
 
Old 09-14-2005, 09:01 AM   #5
TruckStuff
Member
 
Registered: Apr 2002
Posts: 498

Rep: Reputation: 30
Quote:
Originally posted by stickman
You might want to reconsider having your HTTPS content as a subdirectory of your HTTP content.
To elaborate on what he said, if you SSL DocumentRoot is a subdirectory of your HTTP DocumentRoot, any SSL page can be viewed over non-SSL connections by simply changing the URL.

For example, suppose your HTTP DocumentRoot is set to /var/www/html and your SSL DocumentRoot is set to /var/www/html/ssl, you would view a page over SSL by typing in https://server.domain.com/foo.html. However, you could also view the same page over a non-SSL connection by pointing your browser to http://server.domain.com/ssl/foo.html. Sort of defeats the purpose...
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
VSFTPD with secure & non-secure logins Ricci Graham Linux - Software 6 02-24-2020 11:49 PM
apache: http://localhost (work) http://ipaddress (not working) sarmad Linux - Newbie 7 02-05-2013 07:47 AM
http and https, setuping up a secure site helpme0904 Linux - Newbie 1 06-04-2005 09:34 PM
Secure email (SSL vs. secure authentication) jrdioko Linux - Newbie 2 11-28-2004 01:39 PM
vsftpd very very secure, so secure i can't use it... baronsam Linux - Networking 4 10-06-2003 06:12 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:36 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration