protecting passwords

sharyn

The unsecure login script question made me think.. and I don't know enough to know if I am asking the same question more or less, so if I am let me know it's the same...

Ok, sooner or later, I have to make my site accessable only by login name & password. However, I need it to be pretty secure so that sniffing software attatched to the line can't capture the packets and re-assemble the data and kype the password. Is there anyway to encrypt it before it gets sent out over the line? I'm pretty new at this thing and I figure the only way to learn was asking knowledgable people like you guys.

Thanx a mil

PyroX

SSL

mw-dnb

You will need to get a SSL cert unless you want to use port based traffic.

if you want your site.com to be SSL protected get a verisign cert or godaddy has them dirt cheap, verisign is more reputable though.

you will want to use 128-bit SSL like pyrox said. SSL stands for Secure Socket Layer, it basicly use key based encryption between 2 machines over the internet

sharyn

sounds like an idea.. any links so I can do a little research on this ? I don't know enough about this stuff yet :bemused:
Thanks