1 2DirectoryIndex greeting.tcl 3 4# 5# mod_rewrite rules to coerce secure (https) access to underlying pages 6# 7 8RewriteEngine on 9 10# 11# If the server's connecting port isn't secure (https), then 12# redirect request to same location but such that the communication 13# is secure. NOTE: this isn't as secure as turning off the unsecure 14# port because any confidential information in the request is exposed 15# in the unsuspecting request on the unsecure port. Shouldn't really 16# be a problem since the secure content should only contain secure 17# references and the likelihood that a client mucks with the url into 18# a reference to secure content is pretty darn small. 19# 20 21RewriteCond %{SERVER_PORT} !=443 22 23# 24# Include SCRIPT_URL in case webpine package isn't in the 25# root of the server's data 26# 27RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [R=permanent,L] 28 29