A more secure form of .htaccess?

To: <debian-security@lists.debian.org>
Subject: A more secure form of .htaccess?
From: "Tom Dominico" <tdominico@parlier.k12.ca.us>
Date: Mon, 22 Apr 2002 13:09:41 -0700
Message-id: <[🔎] A539E2F50FF6D3119B7400E018C2FBE909082E@endeavor.parlier.k12.ca.us>

Hello all,

I have written some php-based internal systems for our users.  Users are
required to authenticate to access this system, and their login
determines what they are allowed to do within the system.  I am
concerned that their logging in with cleartext passwords is a security
risk.  I work in a K-12 school enviroment, and many of these students
are rather devious and resourceful (as I was at that age :) ).  My fear
is some bright student setting a sniffer up on my network and gleaning
passwords from it.

I am wondering if any of you have had similar problems.  What is a more
secure way for people to login?  Is SSL an option, and if so, how do I
go about using it?  Do I have to purchase a certificate?  Or is there
some other option?  Finally, should I be using .htaccess at all, or is
there a better way?  Thank you in advance for your advice.

Tom Dominico
Technology Coordinator
Parlier Unified School District


--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: A more secure form of .htaccess?
  - From: Jay Kline <list@slushpupie.com>
- Re: A more secure form of .htaccess?
  - From: Greg Hunt <greg@supplyedge.com>
- Re: A more secure form of .htaccess?
  - From: Schusselig Brane <willwesleyccna@yahoo.de>

Prev by Date: RE: what is means ? + rootkits..
Next by Date: Re: A more secure form of .htaccess?
Previous by thread: Re: Apache htaccess
Next by thread: Re: A more secure form of .htaccess?
Index(es):
- Date
- Thread