473,324 Members | 2,124 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,324 software developers and data experts.

SSL

I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable 80.

How to?

Thanks
Jul 19 '05 #1
10 3025
You won't do this with ASP. You should ask in an IIS group.

But do you really want your whole site to run in SSL? You should leave port
80 open at least for the sake of setting up a redirect from http to https.

Ray at work

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable 80.
How to?

Thanks

Jul 19 '05 #2
in the meantime you could always-

if Request.ServerVariables("HTTPS") = "off" then
response.redirect (https://www.redirect-to-this-page.com)
end if

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable 80.
How to?

Thanks

Jul 19 '05 #3
noted and incorporated redirect and iis setting.
thanks

"Mot Misthoff" <em***@NOTANDADDREE.com> wrote in message
news:uP**************@TK2MSFTNGP12.phx.gbl...
in the meantime you could always-

if Request.ServerVariables("HTTPS") = "off" then
response.redirect (https://www.redirect-to-this-page.com)
end if

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable

80.

How to?

Thanks


Jul 19 '05 #4
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable 80.

How to?

Thanks

Jul 19 '05 #5
cause i want to make sure that people go thru the secure site.

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:ep**************@TK2MSFTNGP12.phx.gbl...
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable 80.
How to?

Thanks

Jul 19 '05 #6
Sound reasonable, I just wanted to check if this was more to do with
unwanted traffic to the IP address as opposed to a reasoned choice to drop
port 80.

You can specify that a specific website be hosted only on 443 (eg. https:\\)
or you can place a redirect in the global.asa to push all http:\\ traffic to
the https:\\ entry page when the first .asp page is viewed.

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:e$**************@tk2msftngp13.phx.gbl...
cause i want to make sure that people go thru the secure site.

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:ep**************@TK2MSFTNGP12.phx.gbl...
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable 80.
How to?

Thanks


Jul 19 '05 #7
Ok how do I put another site only to be port 80?

you see, i have a secure.mydomain.com on the same machine as
www.mydomain.com

I don't want the 2 to intermingle. I see that I can "require 128 bit
encryption" on the SSL site.

But on the regular www site, I don't want them to use sssl 0 i want to force
port 80
thanks.

Even if i do a redirect in global.asa , that won't stop the guy from
changing the url to https on the next page

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
Sound reasonable, I just wanted to check if this was more to do with
unwanted traffic to the IP address as opposed to a reasoned choice to drop
port 80.

You can specify that a specific website be hosted only on 443 (eg. https:\\) or you can place a redirect in the global.asa to push all http:\\ traffic to the https:\\ entry page when the first .asp page is viewed.

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:e$**************@tk2msftngp13.phx.gbl...
cause i want to make sure that people go thru the secure site.

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:ep**************@TK2MSFTNGP12.phx.gbl...
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable

80.

How to?

Thanks


Jul 19 '05 #8
OK,

Generally to run multiple sites on port 80 you have to use host headers.

eg.

http://www.4guysfromrolla.com/webtech/080200-1.shtml

Now to allow a specific site to be only available on the https:\\ (eg. port
443) then just remove the port 80 entries from the host headers and leave
the port 443 entries (these port 443 entries can only be added if you have a
cert installed I think).

Host headers are a way of creating 'multiple' websites hosted off one IP
address distinguished by the URL of the site domain as opposed to a blanket
resolution of all urls to that IP address.

The most common usage is to create host header and then drop the 'open' port
80 entry (eg. the entry that has a blank host header) so that IP based
traffic will not be granted access, only url's that conform to the host
header will be allowed to see the website. This has the great effect of
stopping the majority of hack and virus traffic to your IIS server since
these all try to get in using the IP address as opposed to a host header.

Have a read of host headers on Google to get more information about it.

http://www.google.com/search?hl=en&i...ers+in+IIS+5.0

Just a small point, you will need the capability to add 'A' records to your
DNS server to create further domains beyond your own. For example, Blue
Canoe (my company) uses DSVR (UK based hosting) to host our websites and
provide access to our DNS so we can create as many domains and subdomains as
we require such as: site1.blue-canoe.net, site2.blue-canoe.net,
securestuff.blue-canoe.net etc.

If you can't see how to achieve what you want then please post again but
make sure you have a clear description of exactly what you want to achieve.
At the moment I'm still not sure of your concerns about the two sites (one
on http:\\ only and one on https:\\ only?).

Hope this helps,

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:ur**************@TK2MSFTNGP09.phx.gbl...
Ok how do I put another site only to be port 80?

you see, i have a secure.mydomain.com on the same machine as
www.mydomain.com

I don't want the 2 to intermingle. I see that I can "require 128 bit
encryption" on the SSL site.

But on the regular www site, I don't want them to use sssl 0 i want to force
port 80
thanks.

Even if i do a redirect in global.asa , that won't stop the guy from
changing the url to https on the next page

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
Sound reasonable, I just wanted to check if this was more to do with
unwanted traffic to the IP address as opposed to a reasoned choice to drop
port 80.

You can specify that a specific website be hosted only on 443 (eg. https:\\) or you can place a redirect in the global.asa to push all http:\\ traffic to the https:\\ entry page when the first .asp page is viewed.

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:e$**************@tk2msftngp13.phx.gbl...
cause i want to make sure that people go thru the secure site.

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:ep**************@TK2MSFTNGP12.phx.gbl...
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to disable

80.

How to?

Thanks



Jul 19 '05 #9
thanks I got all that down, thanks. I did rephrase the question and repost.

I cannot use host headers with ssl, so that leaves a hole
"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:u7**************@tk2msftngp13.phx.gbl...
OK,

Generally to run multiple sites on port 80 you have to use host headers.

eg.

http://www.4guysfromrolla.com/webtech/080200-1.shtml

Now to allow a specific site to be only available on the https:\\ (eg. port 443) then just remove the port 80 entries from the host headers and leave
the port 443 entries (these port 443 entries can only be added if you have a cert installed I think).

Host headers are a way of creating 'multiple' websites hosted off one IP
address distinguished by the URL of the site domain as opposed to a blanket resolution of all urls to that IP address.

The most common usage is to create host header and then drop the 'open' port 80 entry (eg. the entry that has a blank host header) so that IP based
traffic will not be granted access, only url's that conform to the host
header will be allowed to see the website. This has the great effect of
stopping the majority of hack and virus traffic to your IIS server since
these all try to get in using the IP address as opposed to a host header.

Have a read of host headers on Google to get more information about it.

http://www.google.com/search?hl=en&i...ers+in+IIS+5.0
Just a small point, you will need the capability to add 'A' records to your DNS server to create further domains beyond your own. For example, Blue
Canoe (my company) uses DSVR (UK based hosting) to host our websites and
provide access to our DNS so we can create as many domains and subdomains as we require such as: site1.blue-canoe.net, site2.blue-canoe.net,
securestuff.blue-canoe.net etc.

If you can't see how to achieve what you want then please post again but
make sure you have a clear description of exactly what you want to achieve. At the moment I'm still not sure of your concerns about the two sites (one
on http:\\ only and one on https:\\ only?).

Hope this helps,

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:ur**************@TK2MSFTNGP09.phx.gbl...
Ok how do I put another site only to be port 80?

you see, i have a secure.mydomain.com on the same machine as
www.mydomain.com

I don't want the 2 to intermingle. I see that I can "require 128 bit
encryption" on the SSL site.

But on the regular www site, I don't want them to use sssl 0 i want to force port 80
thanks.

Even if i do a redirect in global.asa , that won't stop the guy from
changing the url to https on the next page

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
Sound reasonable, I just wanted to check if this was more to do with
unwanted traffic to the IP address as opposed to a reasoned choice to drop port 80.

You can specify that a specific website be hosted only on 443 (eg. https:\\)
or you can place a redirect in the global.asa to push all http:\\ traffic to
the https:\\ entry page when the first .asp page is viewed.

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:e$**************@tk2msftngp13.phx.gbl...
cause i want to make sure that people go thru the secure site.

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:ep**************@TK2MSFTNGP12.phx.gbl...
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to

disable 80.

How to?

Thanks



Jul 19 '05 #10
I'll have to investigate that [not allowing host headers on SSL] since I
don't have a cert here (I'll get a test one generated ASAP).

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:ex***************@TK2MSFTNGP10.phx.gbl...
thanks I got all that down, thanks. I did rephrase the question and repost.

I cannot use host headers with ssl, so that leaves a hole
"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:u7**************@tk2msftngp13.phx.gbl...
OK,

Generally to run multiple sites on port 80 you have to use host headers.

eg.

http://www.4guysfromrolla.com/webtech/080200-1.shtml

Now to allow a specific site to be only available on the https:\\ (eg. port 443) then just remove the port 80 entries from the host headers and leave
the port 443 entries (these port 443 entries can only be added if you have a cert installed I think).

Host headers are a way of creating 'multiple' websites hosted off one IP
address distinguished by the URL of the site domain as opposed to a blanket resolution of all urls to that IP address.

The most common usage is to create host header and then drop the 'open' port 80 entry (eg. the entry that has a blank host header) so that IP based
traffic will not be granted access, only url's that conform to the host
header will be allowed to see the website. This has the great effect of
stopping the majority of hack and virus traffic to your IIS server since
these all try to get in using the IP address as opposed to a host header.

Have a read of host headers on Google to get more information about it.

http://www.google.com/search?hl=en&i...ers+in+IIS+5.0
Just a small point, you will need the capability to add 'A' records to your DNS server to create further domains beyond your own. For example, Blue
Canoe (my company) uses DSVR (UK based hosting) to host our websites and
provide access to our DNS so we can create as many domains and subdomains as we require such as: site1.blue-canoe.net, site2.blue-canoe.net,
securestuff.blue-canoe.net etc.

If you can't see how to achieve what you want then please post again but
make sure you have a clear description of exactly what you want to achieve. At the moment I'm still not sure of your concerns about the two sites (one
on http:\\ only and one on https:\\ only?).

Hope this helps,

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:ur**************@TK2MSFTNGP09.phx.gbl...
Ok how do I put another site only to be port 80?

you see, i have a secure.mydomain.com on the same machine as
www.mydomain.com

I don't want the 2 to intermingle. I see that I can "require 128 bit
encryption" on the SSL site.

But on the regular www site, I don't want them to use sssl 0 i want to force port 80
thanks.

Even if i do a redirect in global.asa , that won't stop the guy from
changing the url to https on the next page

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
Sound reasonable, I just wanted to check if this was more to do with
unwanted traffic to the IP address as opposed to a reasoned choice to drop port 80.

You can specify that a specific website be hosted only on 443 (eg. https:\\)
or you can place a redirect in the global.asa to push all http:\\ traffic to
the https:\\ entry page when the first .asp page is viewed.

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:e$**************@tk2msftngp13.phx.gbl...
cause i want to make sure that people go thru the secure site.

"Chris Barber" <ch***@blue-canoe.co.uk.NOSPAM> wrote in message
news:ep**************@TK2MSFTNGP12.phx.gbl...
Use host headers to 'hide' port 80 from IP based scanning?

Can you elaborate on why you want to disable port 80?

Chris.

"Jeff Clark" <JeffC@NO_SPAMreturnventures.com> wrote in message
news:%2****************@TK2MSFTNGP09.phx.gbl...
I setup SSL.

Now users can see the site at port 80 and at port 443. i want to

disable 80.

How to?

Thanks




Jul 19 '05 #11

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

3
by: William C. White | last post by:
Does anyone know of a way to use PHP /w Authorize.net AIM without using cURL? Our website is hosted on a shared drive and the webhost company doesn't installed additional software (such as cURL)...
2
by: Albert Ahtenberg | last post by:
Hello, I don't know if it is only me but I was sure that header("Location:url") redirects the browser instantly to URL, or at least stops the execution of the code. But appearantely it continues...
3
by: James | last post by:
Hi, I have a form with 2 fields. 'A' 'B' The user completes one of the fields and the form is submitted. On the results page I want to run a query, but this will change subject to which...
0
by: Ollivier Robert | last post by:
Hello, I'm trying to link PHP with Oracle 9.2.0/OCI8 with gcc 3.2.3 on a Solaris9 system. The link succeeds but everytime I try to run php, I get a SEGV from inside the libcnltsh.so library. ...
1
by: Richard Galli | last post by:
I want viewers to compare state laws on a single subject. Imagine a three-column table with a drop-down box on the top. A viewer selects a state from the list, and that state's text fills the...
4
by: Albert Ahtenberg | last post by:
Hello, I have two questions. 1. When the user presses the back button and returns to a form he filled the form is reseted. How do I leave there the values he inserted? 2. When the...
1
by: inderjit S Gabrie | last post by:
Hi all Here is the scenerio ...is it possibly to do this... i am getting valid course dates output on to a web which i have designed ....all is okay so far , look at the following web url ...
2
by: Jack | last post by:
Hi All, What is the PHP equivilent of Oracle bind variables in a SQL statement, e.g. select x from y where z=:parameter Which in asp/jsp would be followed by some statements to bind a value...
3
by: Sandwick | last post by:
I am trying to change the size of a drawing so they are all 3x3. the script below is what i was trying to use to cut it in half ... I get errors. I can display the normal picture but not the...
0
by: ryjfgjl | last post by:
ExcelToDatabase: batch import excel into database automatically...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you
0
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome former...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.