Why no https???

[jggimi]

There's no rewrite for users of http:// URLs. For all of them, this site appears to be down. (I was a victim of this issue, and saw a complaint posted about daemonforums.org at linuxquestions.org, where I learned about ths switch to https.)

[J65nko]

There is a 301 permanent redirect :

Code:

     42 server  "daemonforums.org" {
     43         listen on egress  port 80
     44         log { style forwarded
     45                access http80_access.log
     46                error  http80_error.log
     47         }
     48         root "/htdocs"
     49         block return 301 "https://daemonforums.org$REQUEST_URI"
     50 }

But guess what was in my pf.conf:

Code:

block in quick on egress inet proto tcp from !  $ME  to port http

I found that out by checklng the httpd error log and only saw redirects from my IP .....

I put that in place to allow me to test the relayd setup TLS proxying , while still allowing direct httpd access to the original daemonforums site.
I just forgot to comment that out

[hitest]

Thanks for the big change!

[Carpetsmoker]

Quote:

Originally Posted by J65nko

But it is through a dirty hack. I put a HTTPS proxy/relay in front of the original site

Doesn't sound like such a dirty hack to me; it's how I run most services (usually with hitch). This way you just have one process dealing with https, and everything else can remain using plain HTTP. "Do one thing and do it well" and all of that.

With something like Caddy running as a proxy you can get Let's Encrypt certificates for free, too.