# certificate used by startcom). It seems that even without this
# option, it already works, probably because openssl ships some
# certificates. But, let's put it here to be safe anyway.
- ssl.cafile = "/etc/lighttpd/ssl/ca/startssl-all-ca.pem"
- # Use the mail.stdout.nl certificate as the default certificate (for
+ ssl.ca-file = "/etc/lighttpd/ssl/ca/startssl-all-ca.pem"
+ # Use the mail.stdin.nl certificate as the default certificate (for
# non-SNI browsers and domains without their own certificate), since
# it is currently the only one we have anyway.
- ssl.pemfile = "/etc/lighttpd/ssl/mail.stdout.nl.pem"
+ ssl.pemfile = "/etc/lighttpd/ssl/mail.stdin.nl.pem"
}
#### external configuration files
"broken-scriptfilename" => "enable",
))
)
+
+ $HTTP["host"] == "mail.stdin.nl" {
+ alias.url += ( "/squirrel" => "/usr/share/squirrelmail" )
+
+ # Only expose parts of the hastymail directory
+ $HTTP["url"] =~ "^/hastymail(|/index.php|/templates|/js|/plugins|/images)(|/.*)$" {
+ alias.url += ( "/hastymail" => var.site-dir + "/applications/hastymail2" )
+ }
+ }
+
+ # Enable SSL
+ $HTTP["host"] == "mail.stdin.nl" {
+ # Specify the certificate for this domain (uses SNI)
+ ssl.pemfile = "/etc/lighttpd/ssl/mail.stdin.nl.pem"
+ # Redirect HTTP to HTTPS
+ $HTTP["scheme"] == "http" {
+ url.redirect = ( "^(.*)" => "https://mail.stdin.nl$1" )
+ }
+ }
}
))
)
- $HTTP["host"] == "mail.stdout.nl" {
- alias.url += ( "/squirrel" => "/usr/share/squirrelmail" )
-
- # Only expose parts of the hastymail directory
- $HTTP["url"] =~ "^/hastymail(|/index.php|/templates|/js|/plugins|/images)(|/.*)$" {
- alias.url += ( "/hastymail" => var.site-dir + "/applications/hastymail2" )
- }
- }
-
$HTTP["host"] == "mail.stdout.nl" {
# Specify the certificate for this domain (uses SNI)
ssl.pemfile = "/etc/lighttpd/ssl/mail.stdout.nl.pem"
- # Redirect HTTP to HTTPS for mail.stdout.nl
- $HTTP["scheme"] == "http" {
- url.redirect = ( "^(.*)" => "https://mail.stdout.nl$1" )
- }
}
}
projects / matthijs / servers / drsnuggles.git / commitdiff