Now I’ve worked with ASP for a few years now and when asked to put some security around a section of a web site I was gonna create a little function that took the users password and login, check both of them in the database, store a value in the session object (loggedin=true) and then allow access. Also if a user tried to access a page without loggin in a function added to all pages in the section would check the session variable and then redirect them to the login page.
However I’ve realised the site is hosted by another company just now and they use https:// instead of what I just mentioned
Does anyone know what is it involved in using https://?
Is it different from my original plan?
Is this an apache/IIS setting?
Any help appreciated, thanks :thumb:
