APEX

I've been searching this forum and elsewhere to determine how to configure the Embedded XML Gateway to enable a secure connection (SSL, https, etc). It would appear that there is no way to do this, but that doesn't make sense since it couldn't be used for anything that requires a secure connection. Why would anyone want to allow web connection to a database tier machine without a secure connection?

Can the XML Gateway be configured to use SSL? If so, where can I find instructions that work? I'm using Apex 4.0 on 11gr2 on Redhat.

Is the XML Gateway useless for anything requiring a secure connection? If so, why doesn't Oracle post this where everyone can find it so that they will know not to bother trying to use the XML gateway for anything that requires security?

Should I be using the new listener? http://www.oracle.com/technetwork/developer-tools/apex-listener/overview/index.html

What is the best way to deploy APEX over the Internet in a secure manner?

Also, how do I "uninstall" the Gateway so that I can use another solution? I've heard that once it's installed, the only way to switch to something else is to reinstall APEX. Tell me it isn't so...

Thanks.

- Scott