[dokuwiki] Re: ssl for acl'ed pages

• From: Andreas Gohr <andi@xxxxxxxxxxxxxx>
• To: dokuwiki@xxxxxxxxxxxxx
• Date: Thu, 10 Mar 2011 22:33:30 +0100

> This patch does a https redirect on those pages which are ACL controlled.

We rejected earlier patches that did SSL redirects for the logins for
the following reasons:

- it can easily be done using server rewrites
- the SSL host might not have the same domain, so you'd need to have
another config to configure the SSl host name
- limiting SSL to certain parts of the site usually leads to have
unsecured parts in the page (like images) that compromise the whole
security

> Other pages are left alone, as to have lower load on the server.

For modern server and client hardware the SSL overhead isn't really an
issue anymore (there was a popular article about that recently - maybe
someone has the URL bookmarked?)

I recommend to switch your whole site to SSL instead.

Andi

-- 
splitbrain.org
-- 
DokuWiki mailing list - more info at
http://www.dokuwiki.org/mailinglist

• Follow-Ups:
  • [dokuwiki] Re: ssl for acl'ed pages
    • From: Robin Getz
  • [dokuwiki] Re: ssl for acl'ed pages
    • From: Adrian Lang

• References:
  • [dokuwiki] ssl for acl'ed pages
    • From: Robin Getz

Other related posts:

• » [dokuwiki] ssl for acl'ed pages- Robin Getz
• » [dokuwiki] Re: ssl for acl'ed pages - Andreas Gohr
• » [dokuwiki] Re: ssl for acl'ed pages- Robin Getz
• » [dokuwiki] Re: ssl for acl'ed pages- Mike Frysinger
• » [dokuwiki] Re: ssl for acl'ed pages- Adrian Lang
• » [dokuwiki] Re: ssl for acl'ed pages- Mª®k
• » [dokuwiki] Re: ssl for acl'ed pages- Robin Getz
• » [dokuwiki] Re: ssl for acl'ed pages- Robin Getz
• » [dokuwiki] Re: ssl for acl'ed pages- Mike Frysinger
• » [dokuwiki] Re: ssl for acl'ed pages- Adrian Lang
• » [dokuwiki] Re: ssl for acl'ed pages- Mike Frysinger

1. Home
2. dokuwiki
3. Archive
4. 03-2011

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---