Hi! I have an apache ispconfig3 webserver where I don't want to use or allow https. If i visit https://somedomain.at i get a warning that the certificate is unthrustworthy. This stresses out some of our customers, so I would like to block https access alltogether. How is that possible?
You could also educate your customers. I don't mean that to be rude. I find it important to teach my customers about SSL and what it means. It makes them better netizens.
Yeah, we try to educate them as much as possible. However, OUR customers are stressed out about the fact that some of THEIR customers (visitors of their website) get stressed out about the "untrustworthy certificate" warning. And you can't really educate any arbitrary visitor to your website who might try https for some reason. It's not something that happens very often of course, but disabling the port 443 seems like a easy and clean solution - so problem soved.
I suppose that's true. I've just always felt that disabling SSL was a bad move personally. It can be argued that any site requiring form submission or logon should use SSL. It's also limiting if you ever decide to use something like SPDY. Either way, I'm glad you found a solution that works for you.