Home

 

SSL directive considerations

 

+

Search Tips   |   Advanced Search

 

Limiting IHS to encrypt at only 128 bits or higher.

There are several methods of configuring IHS to limit SSL to allow only 128 bit browsers and 128,168 bit ciphers access to Web content.

 

How to rewrite HTTP (port 80) requests to HTTPS (port 443).

The mod_rewrite.c rewrite module provided with IHS can be used as an effective way to automatically rewrite all HTTP requests to HTTPS.

 

Logging SSL request information in the access log for IHS.

The IBM HTTP Server implementation provides SSL environment variables that are configurable with the LogFormat directive in the httpd.conf configuration file.

 

Enable certificate revocation lists (CRL) in IHS.

Certificate revocation provides the ability to revoke a client certificate given to the IHS by the browser when the key is compromised or when access permission to the key is revoked. CRL represents a database that contains a list of certificates revoked before their scheduled expiration date.


 

Related tasks

Setting cipher specifications