Date: Tue, 27 Oct 2009 09:37:58 +0700 (ICT) From: Olivier Nicole <Olivier.Nicole@cs.ait.ac.th> To: alexbestms@math.uni-muenster.de Cc: alexbestms@math.uni-muenster.de, freebsd-questions@FreeBSD.org, steve@ibctech.ca Subject: Re: howto use https in favour of http Message-ID: <200910270237.n9R2bwQ3037698@banyan.cs.ait.ac.th> In-Reply-To: <permail-20091027022913f0889e8400004137-a_best01@message-id.uni-muenster.de> (message from Alexander Best on Tue, 27 Oct 2009 03:29:13 %2B0100 (CET)) References: <permail-20091027022913f0889e8400004137-a_best01@message-id.uni-muenster.de>
next in thread | previous in thread | raw e-mail | index | archive | help
Alex, > i'm not using a webserver or anything. i'm just a regular user. the point is: > i often forget to specify https://... for that specific address in apps like > lynx or firefox. that's why the non-ssl version of that site is being loaded. > i'd like freebsd to take care of this so even if the app is trying to access > the non-ssl version it should in fact be redirected to the ssl version by > freebsd. I think it is the responsibility of the person in charge of the server to decide whether non-ssl connections are allowed or not; and to redirect non-ssl connections to ssl ones when needed. That should never be a burden for the client. Now on your client side what you can do is: - set-up a firewall to forbid non-ssl connections to certain web sites: if you try a non-ssl connection, it will be refused; easy enough to set-up, but frustrating when you see that your connection is refused; - set-up a proxy/redirector to change your non-ssl connections to ssl one: certainly an heavier thing to set-up, but would work transparently; Good luck, Olivier
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200910270237.n9R2bwQ3037698>