SSL Problems still able to go to unsecure pages!!

[johnncc]

Hi,
I recently installed a SSLCert on our webserver. I am still able to go to the site using

http://sfscollect.com

and I would like for our visitors to only view the pages by typing

https://sfscollect.com.

How can I do this using .htaccess or php to insure that they always receive a secured page? I don't have access to the ReWrite_mod. Any help will be much appreciated.

 

[sleipnir214]

If the whole site is SSL, then turn off Apache's ability to respond to port HTTP for the site.

Alternatively, assuming you are using mod_ssl, take a look at mod_ssl's SSLRequireSSL directive (

http://www.modssl.org/docs/2.8/ssl_reference.html#ToC22)

Want the best answers? Ask the best questions:

http://www.tuxedo.org/~esr/faqs/smart-questions.html

TANSTAAFL!

 

[johnncc]

Ok,

How do I turn off the function in Apache that enables it to respond to HTTP?

Thanks for the help!!

 

[sleipnir214]

We have verged off-topic, but I'll answer.

You should have a <VirtualHost> directive which defines a virtual web server for your site using port 80. It may have no port information -- Apache defaults to port 80. Comment out everything from the <VirtualHost> line to the </VirtualHost> line, inclusive. Want the best answers? Ask the best questions:

http://www.tuxedo.org/~esr/faqs/smart-questions.html

TANSTAAFL!

 

[johnncc]

Thanks sleipnir214 You have been quite helpful.