Secure socket layer?

Hi, I would like to have information on secure socket layer. Does it take great skill of programming. I'm a graphic designer and I build website so my programming is limited to HTML and some Java. To reason why i'm asking you this is because my boss wants me to make private information on our website so that only members will have access to those database. Can you give me some solutions???
cmagAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

phutsonCommented:
How secure does this informations need to be? You can do simple passwords protection with the .htaccess file but that will not protect the data in transit. There are many examples of how to use the .htaccess file here and there should be at least one example of how to add passwords to the password file automaticly in one of the forums. SSL only protects data in transit.
0
cmagAuthor Commented:
I would like to know more about htaccess file. The protection does not need to be very "high" (it is not vital informantion) only to had a bit of security.

 
0
julio011597Commented:
To give you further insights, would you mind telling which web server you are using?

BTW, the kind of protection phutson has talked about, is the same you can see when loggin to this site: there's a database of authorized users and one has to give user name and password to have access to pages. This seems indeed enough for your needs.
0
Exploring SharePoint 2016

Explore SharePoint 2016, the web-based, collaborative platform that integrates with Microsoft Office to provide intranets, secure document management, and collaboration so you can develop your online and offline capabilities.

cmagAuthor Commented:
The server we have is Windows NT 3.51.
BTW does the htaccess files slow down the server?


Thanks
0
julio011597Commented:
That is the Operating System. What we need is your Web Server (e.g. Netscape FastTrack, Microsoft IIS, etc.).

In practice, there's no slowdown with access control enabled; actually, the only difference is that each incoming request, besides file name, bring an additional login name and password information.
0
cmagAuthor Commented:
We are in Network so it really is a Windows NT Server... at least that's what everybody here seems to tell me. We use the hard drive of this computer (whit the WinNT server on it) to hold the files of our websites.

I don't know if that help you in anyway. I'll try to talk with my technician this evening to be sure.
0
phutsonCommented:
Sounds like your using IIS. If thats the case there is a .htaccess equivilent on it. I have never done so I would need to look it up unless Julio has already done it and can answer it without going to another source.
0
shogiCommented:
If you need really a secure connection you need to have a KEY. For each connection, email you need to secure you will need to use this KEY. If you support Netscape and IE you need 2 Keys, one for Netscape and one for IE.  If you just have to support only one of those browser in you Intranet you just need the KEY for you browser you want to support.  But were you can get this KEY and more information about secure connection : www.verisign.com

Just becarefull want you get your key... get the good one for the good browser... and the good level of security to the type of secure connection you want.

You can have too KEY for the server... See at verisign you will have some helpfull informations.

Regards, Shogi
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
julio011597Commented:
phutson:
no, i've never worked with IIS, so feel free to provide an answer;

shogi:
what are you talking about, man?? if you had read comments, you knew that cmag is actually asking for access control.
0
cmagAuthor Commented:
I'll wait for your answer phutson. Thanks to all of you guys for the helping!


cmag
0
phutsonCommented:
Ok what I have found (if anyone else can tell it better please do). You need to allow basic (clear text password authentication). Open the internet service manager with start-->programs-->internet information server --> internet service manager.
Then open the web services properties page by double clicking on the name of the web server showing on this page then select clear (basic authentication). You will then be able to change the directory rights in subdirectories off of the web server's root directory to restrict access to certain groups or users (I would suggest only changing access based on groups). I still have not done this on my iis server. So if this doesn't work let me know and by then I will probably have done this and will be able to walk you through a real setup. The book that I got some of the information out of is Microsoft Internet Information server 4.0 sourcebook by Michele Petrovsky  isbn 0471178055
0
phutsonCommented:
I forgot to mention DO NOT use the same login ids for both access to internet directories as you use for the rest of the network. The passwords and userids are sent across the internet unencrypted. They would be very easy to pull out of packets if anyone was watching. You could use the microsoft challeng/response authentication but that would require  the users to the secured section to use Internet Explorer.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Web Development

From novice to tech pro — start learning today.