Hi list There's always something new to learn and this is the first time I've really needed to secure a web session in a client project, and I'm after a few pointers if I may...
Fundamentally, the project is an online questionnaire which stores responses in a back-end database. That database can be queried by the client and reports generated. Easy stuff. Now given the nature of the data can be considered sensitive (mental health in the workplace) the client wants this to be as secure as possible. So my questions are twofold: Firstly, shall I just secure the login process and set a session cookie or do I secure the entire session? Secondly, how exactly do I go about it? As far as I gather I don't necessarily need to do anything different in programming but I'll need to run everything through SSL and have the appropriate certificates. Or am I wrong here? Pointers, info and tips please much appreciated as always! MOU ____ The WDVL Discussion List from WDVL.COM ____ To Join wdvltalk, Send An Email To: mailto:[EMAIL PROTECTED] or use the web interface http://e-newsletters.internet.com/discussionlists.html/ Send Your Posts To: wdvltalk@lists.wdvl.com To change subscription settings, add a password or view the web interface: http://intm-dl.sparklist.com/read/?forum=wdvltalk ________________ http://www.wdvl.com _______________________ You are currently subscribed to wdvltalk as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.