|
|
|
Join Login Make these ads disappear! Sign up for an account and login. |
|
|
|
Lab Wear Advanced Search |
|
|
|
Get Zope Achieve Zen Newbies CommunityRant The Book Building Websites Hosting EU Hosting |
|
|
|
Help! PyReference PyCookbook FAQTs Daily-URL! Contact |
Copyright © 2001-2005 zopeLABS and community
Zope with Apache and SSLSubmitted by: delfstromLast Edited: 2004-10-14
Category: Security |
|
||
|
Description: An example of Apache configuration for using SSL (https) with Zope |
|||
|
Source (Text): Make sure you have mod_ssl installed. Add this section for your
<host.domain.com> and <ip-address> in httpd.conf and restart apache.
<VirtualHost ip-address:443>
ServerName host.domain.com
DocumentRoot /var/inet/html
SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
RewriteEngine on
# Do not allow use of the Zope management interfaces.
RewriteCond %{REQUEST_URI} manage
RewriteRule manage - [F]
RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/https/host.domain.com:443/intranet/VirtualHostRoot/$1 [P,L]
</VirtualHost>
|
|||
|
Explanation: This code also blocks outsiders from using /manage urls over the secure conneciton. Full credit goes to Ricardo Anguiano. This was taken from a message by Ricardo Anguiano posted to the Zope mailing list on 31 July 2002. Ricardo notes: Tested by watching tcpdump -x | hex2ascii. There were no cleartext passwords and the content was also protected. |
|||
|
Comments: No Comments |
|||