Have you considered creating a self-signed certificate? You'll get encrypted transmissions but with the following caveat. You have to persuade users to accept a warning message when they visit the server. I suggest warning internal users about this in advance. Also I suppose someone could theoretically lure users to a spoofed server (but not likely).
You might want to investigate self-certified SSL certificates. A quick google search turned up a good description at the following commercial site. Skip down to the section titled, "Who can issue SSL certificates?" http://www.instantssl.com/ssl-certificate-support/guides/ssl-certificate-validation.html I know of one company that converted their users from accessing work (MS Exchange) email from home, forcing them from plain-text http:// to SSL encrypted https:// using self-signed certificates. No cost except for the time to set it up. On Monday 04 August 2003 17:08, you wrote: > SSL certs are very expensive. We only have one. And they are > continuous fees every year. > > On Mon, 2003-08-04 at 16:21, Sean M. Foy wrote: > > Basic authentication over SSL? > > -----Original Message----- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > > On Behalf Of Caleb Jorden > > Sent: Monday, August 04, 2003 3:50 PM > > To: [EMAIL PROTECTED] > > Subject: [tslug] Re: Mozilla on the Free Software CD? > > > > > You can't update your directory information at search.truman.edu > > > unless you use IE. (We wrote this ourselves, so I suppose there's no > > > vender to lean on here but us.) > > > > FYI: This information can be modified inside of Pipeline. After you log > > in, you can click on Truman Searches and then Edit Information on the > > left. The reason that modification on search.truman.edu does not work > > in linux is that it, as well as some other sites, uses NTLM > > authentication. NTLM authentication is supported in Mozilla in recent > > builds, but only in Windows. The reason that NTLM authentication is > > used is that it is more secure than basic authentication, which sends > > credentials in plain text over http. I do not have an answer to how we > > could easily and securely authenticate linux clients, I only hope that > > mozilla for linux will soon support NTLM. > > > > > > > > ----------------------------------------------------------------- > > To get off this list, send email to [EMAIL PROTECTED] with > > Subject: unsubscribe > > ----------------------------------------------------------------- > > > > > > ----------------------------------------------------------------- > > To get off this list, send email to [EMAIL PROTECTED] > > with Subject: unsubscribe > > ----------------------------------------------------------------- > > ----------------------------------------------------------------- > To get off this list, send email to [EMAIL PROTECTED] > with Subject: unsubscribe > ----------------------------------------------------------------- ----------------------------------------------------------------- To get off this list, send email to [EMAIL PROTECTED] with Subject: unsubscribe -----------------------------------------------------------------
