Main Stories
Slash Boxes

Slash Open Source Project

Slashcode Log In

Log In

[ Create a new account ]

Article Poll

Poll I found this article to be
Very Helpful
Helpful
Not Helpful
Not Very Helpful
[ Results | Polls ]
Comments:0 | Votes:0

https for admin.pl

posted by Krow on 02:41 AM July 6th, 2000   Printer-friendly   Email story
Sparky J writes "After spending quite a few hours getting slashcode working on my server (watch this site for YASS soon!), I have a question. Is there a relatively simple way to restrict admin.pl to use SSL? I wouldn't want any passwords being sniffed as I log in to admin my site... Freedom's Heartland"
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
 Full
 Abbreviated
 Hidden
More | Login
Loading... please wait.
  • I've been meaning to set SSL up for admin.pl as well -- I find it rather scary using admin.pl through HTTP...

    Would a Redirect do the job?

    Redirect /admin.pl https://yoursite.com/admin.pl

    Or is something more complicated needed?


  • by Anonymous Coward
    I think you could use the Require SSL in apache applied to a directory where you put this admin.pl script.

    Matthieu Araman
  • What I want to do is make it so Slash can be agnostic about the protocol. Set up http and https to point to the same place on the server, so users and admins alike can choose to go to http or https at will. This shouldn't be too tough to do; it should work by simply making $I{rootdir} = '//slash.example.com'; the only problem with this is that $I{rootdir} is used in places where an absolute URL is needed. Basically, we need another variable, like $I{absolute_rootdir}, to use in those places, and then everything should Just Work (I hope).