Thanks for the reply Krist, Let me give you a little background on what I did (and still doing). I created a video training software that is now internet based. Nothing inside of the training needs to be across HTTPS, except the login page. Client's said they would "like" to see it done. Which is were I am at right now. I always thought that HTTPS is noticeably slower than regular HTTP, which is why I would not want HTTPS on the entire site, since video and graphics tend to be more bandwidth and CPU intensive.
In essence I am trying to keep the lag to as little as possible and only encrypt what needs to be encrypted. - Josh On Fri, Aug 7, 2009 at 1:48 AM, Krist van Besien <[email protected]>wrote: > On Thu, Aug 6, 2009 at 10:04 PM, Josh Gooding<[email protected]> > wrote: > > > Run the Login.jsp through SSL, after successful login, drop the SSL. > > Why do you want to drop the SSL after logging in? It is a lot easier > to just run the whole site over https. This way all you need to do is > to configure SSL for your whole server. > > Krist > > > -- > [email protected] > [email protected] > Bremgarten b. Bern, Switzerland > -- > A: It reverses the normal flow of conversation. > Q: What's wrong with top-posting? > A: Top-posting. > Q: What's the biggest scourge on plain text email discussions? > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [email protected] > " from the digest: [email protected] > For additional commands, e-mail: [email protected] > >
