Hi, > I've got a site i want to keep private between just a few people. I've been > reading how to's on google, but all of them seem to be for apache....I know i > need to use openssl but i don't know the commands well enough. > > Basically, what i want to do is use ssl to authenticate a handfull of clients > instead of using basic or digest authentication. I can't find a good guide > for this. If soemone could point me to the information or help me out i'd > really appreciate it.
Unless I'm mistaken, SSL is not for authentication - just for securing the connection. Over a secure connection you could use plain-text passwords for authentication, as a man-in-the-middle attack is unlikely (as long as your client knows a bogey certificate and knows not to trust it). You should read the documentation about SSL[1] and about authentication[2]. Peter-Paul [1] http://www.cherokee-project.com/doc/cookbook_ssl.html [2] http://www.cherokee-project.com/doc/cookbook_authentication.html _______________________________________________ Cherokee mailing list [email protected] http://lists.octality.com/listinfo/cherokee
