Re: Serving SSL sites with same lighttpd instance

On Sun, Sep 12, 2004 at 12:21:39AM +0200, Andreas Ahlenstorf wrote:
> Hi!
> 
> I'm migrating a server from Apache 2 to lighttpd 1.2.8 and I have 
> some questions which I'm unable to resolve myself.
> 
> First one: I have a website using http and https. At the moment, 
> domain.tld is pointing to the IP x.x.x.50, www.domain.tld to .51. 
>   SSL is listening on .51:443. I like to achive the same thing 
> with lighttpd. Is there any way to get that without duplicating 
> the lighttpd.conf and running a second instance of lighttpd?

Currently this is not possible. It is the big mile stone for 1.3.0.
 
> Second one: I need to protect some directories from direct 
> access. With Apache, my config looks like this:
> 
> <Directory /www/domain.tld/imstore/>
>     Order allow,deny
>     Deny from all
>     Satisfy All
> </Directory>
> 
> <Directory /www/domain.tld/imstore/*/_t>
>     Order allow,deny
>     Allow from all
> </Directory>
> 
> ...
> 
> What's the best way to solve that with lighttpd?

The most simplest way: Don't put those directories in the document-root.
:)

$HTTP["url"] !~ "^/imstore/.*/_t$" {
  access.deny = ( "" )
}

This denies access to all files which don't match the URL regex.

I don't know if this satisfied your needs.
 
> Third one: Some hints to how to guess the right amount of 
> php-fcgi childrens?

No. It largely depends on the time a single request needs and how many
of them run in parallel.
 
> Thanks for any helpful answer in advance.
> 
> Regards,
> Andreas
> 
> P.S: @Jan: Thank you for this great software: Light as a feather, 
> easy to use, native fcgi support and no trouble.

Thank you very much.
 
    Jan
  
-- 
Jan Kneschke                                     http://jan.kneschke.de/
Perhaps you want to say 'thank you, jan':    http://jk.123.org/wishlist/