16 Jan
2003
16 Jan
'03
9:04 p.m.
Raphael Arlitt wrote at 2003-1-16 10:18 +0000:
I am a bit doubtful about the insecure password transmission in zope. How can I secure this action for user logins and for FTP access to the sites.
I know I can limit the site access to a domain, but still I consider that as being to dangerous.
Any ideas or hints to documentation of securing the password transfer process? A quite secure way is to use SSL for your complete transactions or use SSL at least for login and cookie base authentication otherwise.
HowTos for Zope+SSL on Zope.org. Dieter