<div dir="ltr">Chris --<br><br>I think Jason means just serve the whole site as HTTPS, which is what we do and it works fine. No template modifications are required. The Apache config looks like:<br><br><VirtualHost *:443><br>
ServerName <a href="http://whoever.kohalibrary.com">whoever.kohalibrary.com</a><br> SSLEngine on<br> SSLCertificateFile /etc/apache2/ssl.crt/whoever.kohalibrary.com.crt<br> SSLCertificateKeyFile /etc/apache2/ssl.key/whoever.kohalibrary.com.plainkey<br>
....<br><br>SSL protects against the exposure of data in transit, like say, during update of a borrower's password on the staff interface. Nothing special gets done to that data, so it is just POSTed like any other form. But SSL keeps it from being readily sniffable. It can also be used for more advanced forms of authentication like client side certs (but if you're not a government contractor, it's unlikely your library needs to be *that* locked down). <br>
<br>--Joe Atzberger,<br>LibLime, Systems Administrator<br> <br><div class="gmail_quote">On Fri, Aug 22, 2008 at 9:42 AM, Chris Cormack <span dir="ltr"><<a href="mailto:chris@bigballofwax.co.nz">chris@bigballofwax.co.nz</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hi Jason<br>
<br>
Yep that would work fine, if the login pages were separate urls,<br>
instead they can be the same url as a page you might not want to<br>
server ssl. Eg opac-main.pl :)<br>
<br>
So you would have to rejig some timeplates too.<br>
<font color="#888888"><br>
Chris<br>
</font><div><div></div><div class="Wj3C7c"><br>
On Sat, Aug 23, 2008 at 1:01 AM, Jason Stephenson <<a href="mailto:jstephenson@mvlc.org">jstephenson@mvlc.org</a>> wrote:<br>
> If you are using Apache to serve your Koha pages, then you can<br>
> configure individual pages to force SSL.<br>
><br>
> Check the Apache documentation for Location and SSL.<br>
><br>
><br>
><br>
><br>
> _______________________________________________<br>
> Koha mailing list<br>
> <a href="mailto:Koha@lists.katipo.co.nz">Koha@lists.katipo.co.nz</a><br>
> <a href="http://lists.katipo.co.nz/mailman/listinfo/koha" target="_blank">http://lists.katipo.co.nz/mailman/listinfo/koha</a><br>
><br>
_______________________________________________<br>
Koha mailing list<br>
<a href="mailto:Koha@lists.katipo.co.nz">Koha@lists.katipo.co.nz</a><br>
<a href="http://lists.katipo.co.nz/mailman/listinfo/koha" target="_blank">http://lists.katipo.co.nz/mailman/listinfo/koha</a><br>
</div></div></blockquote></div><br></div>