+ Reply to Thread
Results 1 to 3 of 3

Thread: Enable SSL just for login

  1. 02-09-2010 01:55 AM #1
    dennylin93
    dennylin93 is offline Registered User
    Join Date
    Dec 2009
    Posts
    17
    Downloads
    0
    Uploads
    0

    Default Enable SSL just for login

    Hi, I saw ticket #1484764 a while ago.

    I'd like to see this feature implemented, and I'll try to come up with a patch in a few days.

    However, I'm not really sure if it's secure. RC seems to store the user's password in $_SESSION['password'], and it's decrypted whenever the password's needed. Is session data stored on the server or on the client's computer?
    Reply With Quote Reply With Quote
  2. 02-09-2010 03:09 AM #2
    skaero's Avatar
    skaero
    skaero is offline Administrator
    Join Date
    Jun 2006
    Location
    USA - New Mexico
    Posts
    2,085
    Downloads
    5
    Uploads
    0

    Default

    It is stored on the server.
    SKaero.com
    Reply With Quote Reply With Quote
  3. 02-09-2010 03:50 AM #3
    dennylin93
    dennylin93 is offline Registered User
    Join Date
    Dec 2009
    Posts
    17
    Downloads
    0
    Uploads
    0

    Default

    Great. I'll start working on it as soon as I have some spare time.
    Reply With Quote Reply With Quote
+ Reply to Thread
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

     

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules