Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 331
  • Last Modified:

Encrypt whole web site ?

Is there any way to encrypt whole web site, including all types of file ?
0
joehuang
Asked:
joehuang
1 Solution
 
ahoffmannCommented:
what do you mean by "encrypt whole site"?

There is nothing that you restrict to encrypt each file, using PGP or whatever. Just keep in mind that the visitor needs to know how to decrypt it.

Or dou you just mean to encrypt the data stream?
Then simply use SSL on port 443 (https).
0
 
hstilesCommented:
Yes, just setup up a redirect so that anyone connecting to www.domain.com is automatically redirected to https://www.mydomain.com/page2 or something similar
0
 
rex007Commented:
You technically COULD encrypt the entire content of you web site. But everyone trying to access to site and allowed to would require a copy of the decryption key.

Controlling just who has the key and how to get it back if they leave and giving new keys  could become a mess really fast.

What you CAN do though is get yourself a sertificate server with it's own CA (Certificate Authority) that could issue certificates containing user credentials for the users you want to grant access to the specefic web site.

Then you could configure you web server to encrypt the communications between the server and the users with SSL. AND you can configure it to require the user ceretificate signed and verified by the CA. Everytime a user would try accessing the site, he/she would get asked for the certificate, witch would then get checked by the CA to make sure it's valid and not revoked.

And bam, there you go.
By the way, the CA server is part of win2k with AD...
0
 
Tim HolmanCommented:
The main question is why ?
You will only be able to sustain 2-3 connections per second, which, for a heavily used web server will slow it right down.  Depends on processing power, plus standard processors aren't really designed for en/decryption.
Industry practise is to leave home page unencrypted, as this would get most hits, and only encrypt past a certain point - eg customer logon.
0
 
1stomniCommented:
Yes you can easily encrypt all the html files using Zend Encoder. (http://www.zend.com) We use it to protect our source code and it works perfect and does not require any certificates or plugins for the user.
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now