[nycbug-talk] OT: Apache/mod_rewrite question

Kevin Reiter KReiter at insidefsi.net
Tue Jan 30 09:14:59 EST 2007


-----Original Message-----
From: talk-bounces at lists.nycbug.org
[mailto:talk-bounces at lists.nycbug.org]On Behalf Of Dan Langille
Sent: Tuesday, January 30, 2007 7:34 AM
To: Kevin Reiter
Cc: talk at lists.nycbug.org
Subject: Re: [nycbug-talk] OT: Apache/mod_rewrite question


On 30 Jan 2007 at 1:02, Kevin Reiter wrote:

> Dan Langille wrote:
> > On 28 Jan 2007 at 23:09, Kevin Reiter wrote:
> > 
> >> Kevin Reiter wrote:
> >>> Jonathan Stewart wrote:
> >>>> Kevin Reiter wrote:
> >>>>> All,
> >>>>>
> >>>>> I've been trying to figure this out for a few hours now, and I
> >>>>> can't quite get it working, and I *know* someone in here knows
> >>>>> how to do this...
> >>>>>
> >>>>> I'm trying to force all traffic to an Apache server (on my
> >>>>> laptop) to use SSL.  The laptop is on a dynamic IP with no
> >>>>> static domain, so I can't force http://machine.domain.tld to
> >>>>> https://machine.domain.tld, and since the IP changes depending
> >>>>> on where I am, I can't use that for a rewrite, either.
> >>>>>
> >>>>> Do any of you Apache gurus know of a way to do this using an
> >>>>> .htaccess file or via a simple edit to httpd.conf?  I've been
> >>>>> checking Google for awhile, but everything I've come across
> >>>>> doesn't quite do the trick.
> >>>> Not exactly what your asking about but have you considered using
> >>>> a dynamic DNS service?  I use No-IP () and have been very happy
> >>>> with them.  They even manually setup IPv6 records for me even
> >>>> though they are not technically supported.  Although I am paying
> >>>> for a domain name and dns they provide free sub-domains as well. 
> >>>> If thats not an option I'll see what I can do about a rewrite
> >>>> rule for you.
> >>>>
> >>>> Jonathan
> >>> This is for a traveling laptop that I use both at home and at
> >>> client sites, and as a test machine at my new job, so I don't
> >>> always have the same IP, which is how I typically access the
> >>> server.
> >>>
> >>> I should've mentioned that I know about zero when it comes to
> >>> writing rewrite rules (this would be a first).
> >>>
> >>> In this case, a dynamic DNS service would do nothing for me (I've
> >>> had a paid account with FreeDNS[1] for years now.)
> >>>
> >>> Basically, I'm looking to force the use of SSL on my webserver
> >>> (apache+mod_ssl-1.3.37+2.8.28) when the IP and domain are always
> >>> changing.
> >>>
> >>> I recall seeing something about {SERVER_ADDR} as a variable, which
> >>> would be exactly what I'm looking for, but I don't have a clue
> >>> outside of that what to write in the .htaccess file.
> >>>
> >> Helps when I include the link..
> >>
> >> [1] http://freedns.afraid.org/
> > 
> > Does this help?  This is how I redirect http://papers.bsdcan.org to
> > https://papers.bsdcan.org
> > 
> > 
> > <VirtualHost 216.168.29.7>
> >     ServerAdmin dan at langille.org
> >     ServerName  papers.bsdcan.org
> > 
> >     Redirect    permanent / https://papers.bsdcan.org/
> > </VirtualHost>
> > 
> > I use similar methods to redirect http://freshports.org to 
> > http://www.freshports.org/
> > 
> > hth
> > 
> 
> It would if I had a static IP, but since it changes multiple times a
> day, I don't think it'll fly for the laptop.  It will, however, be
> perfect for a few other machines I just setup at work - thanks, Dan!

Details... always with the details.

Use a dynamic dns service so that hostnames are updated when the IP 
address changes.  I use no-ip.com

(I hate Outlook..)

As I stated before, I can't use a DNS service because I'm connected to client networks with an INSIDE IP, and it wouldn't do any good on a LAN to have such a service in use for this particular instance.

Thanks for the tip, though.  I'll be doing that here at work in a few minutes on my other servers.

Kev

This message may contain confidential or proprietary information and is intended solely for the individual(s) to whom it is addressed.  If you are not a named addressee you should not disseminate, distribute or copy this e-mail or act upon the information contained herein.  Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.





More information about the talk mailing list