ububuL Posted September 29, 2008 Share Posted September 29, 2008 Hello all, How do I only allow https connection to my apache server? With current configuration I have, when the client connect to http://xxxx:8076, firefox will prompt to use the https connection with the suggested url https://xxxx.8076. I don't want the client connecting to http url then RewriteRule directs the connection to https url. What I would like to see is every time the client connect via http will be denied or errored out. <VirtualHost *:8076> DocumentRoot "/opt/apache/htdocs" ServerName xxxx #SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL # CQ 4767 and CQ # 6834 <IfModule mod_rewrite.c> RewriteEngine on RewriteCond %REQUEST_METHOD ^(TRACE|TRACK) RewriteRule .* - [F] </IfModule> SSLEngine on SSLCertificateFile /opt/apache/conf/ssl.crt/xxxx.crt SSLCertificateKeyFile /opt/apache/conf/ssl.key/xxxx.key SSLProtocol all -SSLv2 SSLCipherSuite ALL:+EXP:!ADH:!NULL:!EXPORT40:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:-LOW:+SSLv3:+TLSv1:-SSLv2 </VirtualHost> Any suggestions? Thanks. Link to comment https://forums.phpfreaks.com/topic/126358-only-allow-https-not-http/ Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.