Re: Separate SSL Server

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 11051
interpreted = N
texte = >At 5:32 PM 4/25/97, Grant Hulbert altered the fabric of cyberspace, >writing: > >> >Since WebStar/SSL is a separate server, my original plan was to have the >> >SSL on another Mac to distribute the load. Can WebCommerce handle serving >> >regular database (unsecured) pages from one Mac (www.abc.com) to build a >> >shopping cart, and then have the checkout pages only (secure) from >> >another Mac (secure.abc.com)? Would you have to run WebCommerce on both >> >Macs? If so, is that acceptable under the license agreement? >> >> We recommend you run both W* and W*SSL on the same box, in the same >>folder. Just keep SSL in the background for better performance of the >>non-SSL. Very few of your visitors ever make it all the way to the end of >>the purchase process that requires https:, so you get very few hits on >>that background W*SSL, and people expect it to be slower anyway because of >>the encryption. This is how we run it here at PCS. >> >> No need to rename the box either: just use https:/www.abc.com and >>http:/www.abc.com >> >> WebCatalog's license agreement is for running a single copy on a single CPU. >> > >So unless I just fell off the truck... > >What you are saying is run BOTH in the same folder???? That way you can >access any file with either http or https. Oh ya, no security problem here. > >The only way to run a secure server is on a differant box with a unique IP. >All secure files should ONLY be on the ssl server box. >I beg to differ with you on this one. The file has nothing to do if the doc is secure or not. It is done by the server software. The simple thing to do if you are worried about somebody typing in a long path name to a secure doc from http vs https is have the non secure pages serve .html and have the secure server dish out .htm (no l). We have tested this already and by setting up suffix mapping in webstar you can control this easily. Take any file on your hard disk and copy it and rename it to .htm. Make sure your suffix mapping is set in the non-secure server to NOT serve .htm. Try to load the page. You get an alert box that says this document contains no data. Not an issue running both on the same box.=============================================== Gary Richter PanaVise Products, Inc. 7540 Colbert Dr. Reno, Nevada 89511 Ph: 702.850.2900 Fx: 702.850.2929 Email: grichter@panavise.com http://www.panavise.com =============================================== Associated Messages, from the most recent to the oldest:

    
  1. Re: Separate SSL Server (Jay Van Vark 1997)
  2. Re: Separate SSL Server (Grant Hulbert 1997)
  3. Re: Separate SSL Server (grichter@panavise.com (Gary Richter) 1997)
  4. Re: Separate SSL Server (Glenn Davis 1997)
  5. Re: Separate SSL Server (Glenn Davis 1997)
  6. Re: Separate SSL Server (Glenn Davis 1997)
  7. Re: Separate SSL Server (grichter@panavise.com (Gary Richter) 1997)
  8. Re: Separate SSL Server (bob 1997)
  9. Re: Separate SSL Server (Jay Van Vark 1997)
  10. Re: Separate SSL Server (Dan L Gilpin 1997)
  11. Re: Separate SSL Server (Glenn Davis 1997)
  12. Re: Separate SSL Server (Bob Minor 1997)
  13. Re: Separate SSL Server (Grant Hulbert 1997)
  14. Re: Separate SSL Server (grichter@panavise.com (Gary Richter) 1997)
  15. Separate SSL Server (Dan L Gilpin 1997)
>At 5:32 PM 4/25/97, Grant Hulbert altered the fabric of cyberspace, >writing: > >> >Since WebStar/SSL is a separate server, my original plan was to have the >> >SSL on another Mac to distribute the load. Can WebCommerce handle serving >> >regular database (unsecured) pages from one Mac (www.abc.com) to build a >> >shopping cart, and then have the checkout pages only (secure) from >> >another Mac (secure.abc.com)? Would you have to run WebCommerce on both >> >Macs? If so, is that acceptable under the license agreement? >> >> We recommend you run both W* and W*SSL on the same box, in the same >>folder. Just keep SSL in the background for better performance of the >>non-SSL. Very few of your visitors ever make it all the way to the end of >>the purchase process that requires https:, so you get very few hits on >>that background W*SSL, and people expect it to be slower anyway because of >>the encryption. This is how we run it here at PCS. >> >> No need to rename the box either: just use https:/www.abc.com and >>http:/www.abc.com >> >> WebCatalog's license agreement is for running a single copy on a single CPU. >> > >So unless I just fell off the truck... > >What you are saying is run BOTH in the same folder???? That way you can >access any file with either http or https. Oh ya, no security problem here. > >The only way to run a secure server is on a differant box with a unique IP. >All secure files should ONLY be on the ssl server box. >I beg to differ with you on this one. The file has nothing to do if the doc is secure or not. It is done by the server software. The simple thing to do if you are worried about somebody typing in a long path name to a secure doc from http vs https is have the non secure pages serve .html and have the secure server dish out .htm (no l). We have tested this already and by setting up suffix mapping in webstar you can control this easily. Take any file on your hard disk and copy it and rename it to .htm. Make sure your suffix mapping is set in the non-secure server to NOT serve .htm. Try to load the page. You get an alert box that says this document contains no data. Not an issue running both on the same box.=============================================== Gary Richter PanaVise Products, Inc. 7540 Colbert Dr. Reno, Nevada 89511 Ph: 702.850.2900 Fx: 702.850.2929 Email: grichter@panavise.com http://www.panavise.com =============================================== grichter@panavise.com (Gary Richter)

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Shell traceroute (2001) Cookies and WebCat?? (1999) Been to the SmithMicro site lately??? (2008) Error Log.db --however (1997) Search Question (2000) Online reference (1997) [WebDNA] site becomes unavailable and WebCatalog warnings (2017) WebCat2b15MacPlugIn - [authenticate] not [protect] (1997) Sort on time (2003) Possible Shownext from Listfiles???? (2000) Keeping text formatting (like hard returns) (2002) Math (1997) Unable to view next 101-200 (1997) BUG: Switch inside ListFields context (2005) attn: smitmicro - cart limitation (2002) [ReturnRaw] and hiding FORM data (2003) Size limit for tmpl editor ? (1997) Quick ShowIf question (1997) Proper file locations (1997) Enhancement Request for WebCatalog-NT (1996)