Point taken and I hadn't considered that. Most users tend to only login once they intend to make a purchase. Then all transactions are via SSL Including browsing for more items to purchase. Once there session expires forward the browser back to the non SSL pages. This does not however preclude the user from directly entering the SSL pages without a valid session, which is also something I would like to fix.
I will have a look at sslext and thanks for the tip. -- Tim Coy Timco Electronics Pty Ltd [EMAIL PROTECTED] > sslext: http://sslext.sourceforge.net/ is one way. > > I assume you only want to put CC/login stuff under SSL (otherwise it's > unnecessary server drag). > > Dave --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
