Menu
▾
▴
Re: [Phpwiki-talk] Secure operation
|
From: Jeff D. <da...@da...> - 2002-01-15 18:27:28
|
said: > On Tue, Jan 15, 2002 at 09:22:10AM -0800, Jeff Dairiki wrote: > https://haxent.bruder.homeip.net/info.php and > http://haxent.bruder.homeip.net:81/info.php Thanks! I guess I don't see any way to detect when https is being used other than by looking at the port (i.e. your patch). It seems fishy to me. Mod_ssl is supposed to set all kinds of environment variables so that CGI scripts (& PHP scripts) can figure out if they're being run over a secure connection (and how secure the connection is, if it's encrypted, etc...) (See http://www.modssl.org/docs/2.8/ssl_reference.html#ToC25.) Any idea why that's not happening in your case? (I run Apache/1.3.22 mod_ssl/2.8.5 --- pretty much exactly your setup, but I do get all the SSL environment variables. https://home.dairiki.org/test/phpinfo.php.) |