By Tiuya on

Hello,

I'm working on a website where members have information that is required for our services but probably not something they want anyone else able to see. It's not that I need a SSL certificate or anything; it's not information *that* private, but I do want to be able to put up some certificates so they feel safe about no one besides me and the person fulfilling the service could seeing their information.

Thanks,
Tiuya

P.S. My site isn't a sex site. It just sounds like it from this post.

Categories: Drupal 5.x

Comments

pobster’s picture

pobster commented

You can easily use Secure Pages to secure your site using SSL.

Just point your SSL site at exactly the same codebase as your normal http site. There's a checkbox in the settings of securepages to switch back to http once the https is no longer matched.

Pobster

Tiuya’s picture

Tiuya commented

Does it really need an SSL certificate to be safe from outsiders? I would need to wait a couple of months before getting it.

pobster’s picture

pobster commented

For fast SSL certs you can either just sign one yourself or get a cheapo one from GoDaddy and yes, the only really secure way (that people trust) to ensure no-one else is 'listening in' on a webpage is to use SSL.

Pobster

ezraw’s picture

ezraw commented

This might be totally obvious and unnecessary to say, but just in case....

SSL only means no one will be able to sniff the content in plain-text as it goes over the wire. If the page is still public though, anyone will still be able to view it, encrypted or not.

Make sure your permissions are set to only allow the data to be viewed by authenticated users (or users with a certain role), and then only allow admins to create users or moderate the creation of them.

Ezra Wolfe
DLC Solutions
EthosCE