> Yes! Right! Maybe I'm a stupid paranoia boy. But why not make a page > secure by IC, if that page is set by AlwaysSecure? > > Thanks! > > Joachim > Check out the ExtraSecure config directive...it allows only secure access to pages marked by AlwaysSecure... Cheers, Andrew