Re: Encrypting a php page...
- From: Paul Rubin <http://phr.cx@xxxxxxxxxxxxxx>
- Date: 23 Mar 2008 11:47:31 -0700
Einstein <michaelhh@xxxxxxxxx> writes:
It is a legit site, believe me you. But at the same time there is a on
and off again hack attempt from someone out there against him. He has
fairly good protection at the server level, but the PHP pages have no
encryption for the information being sent. With average traffic in the
20,000 level he is afraid of a hack using the other peoples
information.
Oh, I thought you meant storage on the server side. You do have to be
careful with that, too, you know. Anyway, use SSL a/k/a TLS.
Sci.crypt is not really the right place to ask how to do that. Talk
to your hosting provider or try a webserver-oriented newsgroup. If
you're using apache, use the built-in SSL stuff in Apache 2.x but the
docs at www.modssl.org (for Apache 1.3, back when SSL was done in a
separate module) might help you understand how to use it.
I'll reveal one little trick: the following is the cheapest place I
know to get certificates from. I think they're intended for the
reseller's hosting customers but I've bought certs a la carte from
them a few times without any problems:
http://www.theplanet.com/hosting-products/ssl/rapidssl.asp
.
- References:
- Encrypting a php page...
- From: Einstein
- Re: Encrypting a php page...
- From: Paul Rubin
- Re: Encrypting a php page...
- From: Einstein
- Encrypting a php page...
- Prev by Date: Re: Encrypting a php page...
- Next by Date: ESORICS'08: Final Call-for-papers
- Previous by thread: Re: Encrypting a php page...
- Next by thread: Re: Encrypting a php page...
- Index(es):
Relevant Pages
|
|
