Hi mod_ssl users,
I have a question about the behavior of mod_ssl:
Someone connects to a secured website. Let's give it the name
secured.com. The browsers have no certificate they can provide so they
must authenticate through basic auth. Now my question: You have to enter
the auth data if you call the server. Will the first authentication be
secured by SSL or will there be first the authenticaten and then the SSL
encryption or will the server first establish the SSL connection and
then authenticate?
Tim
--
Tim Niemueller <[EMAIL PROTECTED]> www.niemueller.de
================================================================
Two things are infinite, the universe and the human stupidity,
but I am not yet sure about the universe. (Albert Einstein)
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
