If you don't require authentication breaks for a lot of browsers since renegotioation...
authorPhilipp Dunkel <Philipp Dunkel@d4452222-2f33-11de-9270-010000000000>
Thu, 21 May 2009 14:52:26 +0000 (14:52 +0000)
committerPhilipp Dunkel <Philipp Dunkel@d4452222-2f33-11de-9270-010000000000>
Thu, 21 May 2009 14:52:26 +0000 (14:52 +0000)
git-svn-id: http://svn.cacert.cl/Software/Voting/vote@37 d4452222-2f33-11de-9270-010000000000

.htaccess

index a189cbe..a7dc92f 100644 (file)
--- a/.htaccess
+++ b/.htaccess
@@ -22,12 +22,12 @@ php_value   safe_mode_exec_dir      /var/empty
        <IfModule mod_ssl.c>
        SSLOptions +StdEnvVars +ExportCertData
        SSLUserName SSL_CLIENT_S_DN_Email
-       SSLVerifyClient optional
-               <IfModule mod_rewrite.c>
-               RewriteEngine        on
-               RewriteCond     %{SSL:SSL_CLIENT_VERIFY} !=SUCCESS
-               RewriteRule     .? - [F]
-               ErrorDocument 403 "You need a client side certificate issued by CAcert to access this url"
-               </IfModule>
+       SSLVerifyClient require
+#              <IfModule mod_rewrite.c>
+#              RewriteEngine        on
+#              RewriteCond     %{SSL:SSL_CLIENT_VERIFY} !=SUCCESS
+#              RewriteRule     .? - [F]
+#              ErrorDocument 403 "You need a client side certificate issued by CAcert to access this url"
+#              </IfModule>
        </IfModule>
 </FilesMatch>