Re: SSL Encryption
From: Herb Martin (news_at_LearnQuick.com)
Date: 07/16/03
- Next message: Miha Pihler: "Re: SSL Encryption"
- Previous message: Herb Martin: "Re: Is there a version of IIS lockdown that works with IIS 5.1 on Windows XP-Pro"
- In reply to: William: "SSL Encryption"
- Next in thread: derik: "SSL and IIS 5.0 - problem - help!"
- Reply: derik: "SSL and IIS 5.0 - problem - help!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 16 Jul 2003 09:37:48 -0500
SSL itself is encrypted so as long as you stay in the HTTPS
protocol you have encryption for any data INCLUDING
passwords.
This is why BasicAuthentication WITH SSL is pratically an
extra IIS authentication method that make the insecure Basic
(clear text) effectively an encrypted authentication -- and
open standard, pretty much browser version independent.
(Since version 2.0 of the major browsers and even Lynx
has an SSL verion.)
"William" <wchristian@smithcom911.com> wrote in message
news:004501c34ba5$a9eacbd0$a101280a@phx.gbl...
> When you attempt to connect to OWA over https://, does it
> start encrypting immediately or does it wait until you
> have authenticated with your network username and
> password, and then encrypt everything after that?
> I know this seems like a dumb question, but I just want
> to be 100% sure that our login names and passwords are
> not exposed when using OWA.
>
> Thanks,
- Next message: Miha Pihler: "Re: SSL Encryption"
- Previous message: Herb Martin: "Re: Is there a version of IIS lockdown that works with IIS 5.1 on Windows XP-Pro"
- In reply to: William: "SSL Encryption"
- Next in thread: derik: "SSL and IIS 5.0 - problem - help!"
- Reply: derik: "SSL and IIS 5.0 - problem - help!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
