I am searching a way to secure the personal data that are in the username/home directory
In this section...
$result .= "\\n";
$result .= "#-------------------------------------------------------\\n";
$result .= "#Generic user dir access directive\\n";
$result .= "#-------------------------------------------------------\\n";
$result .= "<Directory /home/e-smith/files/users/*/home/public_html>\\n";
$result .= "SSLRequireSSL on\\n"; $result .= " AllowOverride FileInfo AuthConfig Limit\\n";
$result .= " Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec\\n";
$result .= " <Limit GET POST OPTIONS PROPFIND>\\n";
$result .= " Order allow,deny\\n";
$result .= " Allow from all\\n";
$result .= " </Limit>\\n";
$result .= " <Limit PUT DELETE PATCH PROPPATCH MKCOL COPY MOVE LOCK UNLOCK>\\n";
$result .= " Order deny,allow\\n";
$result .= " Deny from all\\n";
$result .= " </Limit>\\n";
$result .= "</Directory>\\n";
Why not add an SSLRequireSSL see in red, not sure it's in right place as I've not had a chance to test.