From owner-freebsd-questions@FreeBSD.ORG Tue Oct 27 02:42:46 2009 Return-Path: Delivered-To: freebsd-questions@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DCE5D106568F for ; Tue, 27 Oct 2009 02:42:46 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: from smtp.ibctech.ca (v6.ibctech.ca [IPv6:2607:f118::b6]) by mx1.freebsd.org (Postfix) with SMTP id C00928FC21 for ; Tue, 27 Oct 2009 02:42:45 +0000 (UTC) Received: (qmail 63519 invoked by uid 89); 27 Oct 2009 02:44:35 -0000 Received: from unknown (HELO ?IPv6:2607:f118::5?) (steve@ibctech.ca@2607:f118::5) by 2607:f118::b6 with ESMTPA; 27 Oct 2009 02:44:35 -0000 Message-ID: <4AE65E25.2050701@ibctech.ca> Date: Mon, 26 Oct 2009 22:42:45 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: Alexander Best References: In-Reply-To: X-Enigmail-Version: 0.96.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: Olivier Nicole , freebsd-questions@FreeBSD.org Subject: Re: howto use https in favour of http X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Oct 2009 02:42:46 -0000 Alexander Best wrote: > Olivier Nicole schrieb am 2009-10-27: >> Hi, > >>> i've added the following line to my /etc/hosts: > >>> permail.uni-muenster.de:25 permail.uni-muenster.de:443 > >>> so what i want is for freebsd to never use http, but https for that >>> address. >>> unfortunately hosts doesn't seem to support this syntax. > >> De3finitely not. man hosts to see the syntax and meaning of the >> /etc/hosts file. > >>> any advice on how to do this? > >> I am not sure what you want to do. You want to install a web server >> that only serves https? then you configure your web server to only >> serve https, in Apache configuration you would only have a >> >> and none with port 80. > >> Best regards, > >> Olivier > > sorry if i didn't specify my problem in detail. > > i'm not using a webserver or anything. i'm just a regular user. the point is: > i often forget to specify https://... for that specific address in apps like > lynx or firefox. that's why the non-ssl version of that site is being loaded. > i'd like freebsd to take care of this so even if the app is trying to access > the non-ssl version it should in fact be redirected to the ssl version by > freebsd. I thought that this is what you were originally after. FreeBSD, in itself, can't do this... much like Mac OS or Windows can't do this. Most applications such as Firefox can't even do this (inherently). If you are trying to enforce this as a personal/company policy, you will need to write a 'wrapper' around your application (lynx/firefox) to do this. Note that your example was :25->:443, which implied SMTP over SSL... Nonetheless, FreeBSD can't make these decisions inherently (thankfully). Steve