[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Using self signed certificates to secure admin pages.

Subject: [cobalt-security] Using self signed certificates to secure admin pages.
From: duncan gray <duncanrobertgray@xxxxxxxxx>
Date: Fri, 22 Feb 2002 17:53:04 -0800 (PST)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Ok, you guys I guess are getting sick of this so ill
try and be brief, I discoverd its very easy to enable
ssl on your server e.g. site setting turn on ssl, then
go to the ssl certificate page, fill in the details
and create your self signed certificate.. Now the
question is when i type in
https://www.myserver.com/admin
(after saying yes i accept this dodgy certificate)
it gives me the admin page login, I put my details in,
but once the I click ok I notice that the admin pages
have defaulted back to http:// instead of https://

I dont think that this is that important as long at
the main login bit was done using the encryption, but
my question is .. is it? or is a redirect or something
going on first which is redirecting it to the login
bit with out the encryption. 

An answer to this would be much appreciated, Until I
have the time to really start digging into the raq
myself, you going to have to but up with my dum
questions.

Thanks again.

Duncan.

__________________________________________________
Do You Yahoo!?
Yahoo! Sports - Coverage of the 2002 Olympic Games
http://sports.yahoo.com

Follow-Ups:
- Re: [cobalt-security] Using self signed certificates to secure admin pages.
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-security] Securing Admin Pages
Next by Date: Re: [cobalt-security] Best way to check email securely?
Previous by thread: [cobalt-security] Re: Updated RPMS for proftpd, imapd and qpopper
Next by thread: Re: [cobalt-security] Using self signed certificates to secure admin pages.

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index