htdig: Re: htdig and apache+ssl


Marc Bourget (bourget@ireq.ca)
Thu, 13 Aug 1998 07:43:51 -0400


-----BEGIN PGP SIGNED MESSAGE-----

On Thu, 13 Aug 1998, you wrote:
>> If you allow http access but the site is intended for only https access,
>> won't the stored URLs contain http references? Is there a way to safely
>> change them to https refs after the indexing occurs?
>
I was able to get htdig idex the https site by diabling my redirection on http
site of the same name and passing a -u username:password to htdig. The problem
is that I must restart the http server each time I want to reindex the site.
For a short moment during indexation, I've got a potential breach of security.

>You're right, though I didn't write exactly what I meant. :-)
>
>It's pretty easy to write a small patch that forces ht://Dig to recognize
>an https URL and try the same URL under http. Then the URL is stored as
>https://www.foo.com/ but the indexing can occur through http access (if
>possible).
>
Do you intend to write such a patch shortly.
- --
______________________________________________________________________

Marc Bourget (MB6350) <bourget.marc@ireq.ca>

Unite de Support Informatique Tel.: +1 450 652-8191
IREQ Institut de Recherche d'Hydro-Quebec Fax.: +1 450 652-8309

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv

iQCVAwUBNdLFdOVGH/Flq7xNAQGUrQQA0uTMRloRQH9HZoJqDoy4Fiq+tdD/lAas
ovOmSfdscpF3b7dzxufMEcB7PyXgfTqxNGJcGdW/62TYGF2AnS6WMHMKmQWep4O4
EV5ZME5Bz4oPr4blzYsf2qH3p2BxiRhtGkC4fYEMs9rKSdRapplxePtQpTevIsd/
7LpC13kFRJo=
=/6QY
-----END PGP SIGNATURE-----
----------------------------------------------------------------------
To unsubscribe from the htdig mailing list, send a message to
htdig-request@sdsu.edu containing the single word "unsubscribe" in
the body of the message.



This archive was generated by hypermail 2.0b3 on Sat Jan 02 1999 - 16:27:18 PST