Thanks for the reply Krist, Let me give you a little background on what I did (and still doing). I created a video training software that is now internet based. Nothing inside of the training needs to be across HTTPS, except the login page. Client's said they would "like" to see it done. Which is were I am at right now. I always thought that HTTPS is noticeably slower than regular HTTP, which is why I would not want HTTPS on the entire site, since video and graphics tend to be more bandwidth and CPU intensive.
In essence I am trying to keep the lag to as little as possible and only encrypt what needs to be encrypted. - Josh On Fri, Aug 7, 2009 at 1:48 AM, Krist van Besien <krist.vanbes...@gmail.com>wrote: > On Thu, Aug 6, 2009 at 10:04 PM, Josh Gooding<josh.good...@gmail.com> > wrote: > > > Run the Login.jsp through SSL, after successful login, drop the SSL. > > Why do you want to drop the SSL after logging in? It is a lot easier > to just run the whole site over https. This way all you need to do is > to configure SSL for your whole server. > > Krist > > > -- > krist.vanbes...@gmail.com > kr...@vanbesien.org > Bremgarten b. Bern, Switzerland > -- > A: It reverses the normal flow of conversation. > Q: What's wrong with top-posting? > A: Top-posting. > Q: What's the biggest scourge on plain text email discussions? > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > " from the digest: users-digest-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > >
