When it comes to site security I must admit, I am not the best at it. I currently just make use of sessions with md5 encrypted passwords to log users in and out of my web site and to secure my web site.
I was thinking about getting into SSL encryption but not quite sure how to go about getting started with SSL and PHP.
I have read through verisign.com's information packets and pricing and things like that, but that much I understand. I am more looking for some examples or processes of using SSL in PHP. I have modssl installed on my server so I figure I am ready to go.
Do I need just one certificate to protect my site? How does this affect each one of my pages? How does this effect my login process? How I just install this thing, in the directories I want are protected?
Tips/Suggestions, some verification example code would be excellent.
SSL Startup
Moderator: General Moderators
- feyd
- Neighborhood Spidermoddy
- Posts: 31559
- Joined: Mon Mar 29, 2004 3:24 pm
- Location: Bothell, Washington, USA
It only affects how your pages are processed by requesting clients (and the security level they communicate to the user) it doesn't really alter the security of your server much beyond the traffic being encrypted. Honestly, that's only a small part of security. The major stuff works whether you're running SSL or not.