Securing a website using aVFP

Topics: Developer Forum
Coordinator
Jun 12, 2012 at 2:52 AM

Guys,

A general question for setting/securing up a webserver. 

If I have configured a webserver running IIS7, purchased SSL certificate so the website can run into HTTPS.  What other points should I consider so the website would be secure at it's norm. 

Another one, If I use the sample login username/password from the demo and have the SSL, does it means I'm already encrypting the transmission from the client browser to the webserver?  Or do I have to use another form of encryption ( i.e. vfpencryption71.fll ) or does it make it redundant if applied?

Thank you,

Aldrin

Coordinator
Jun 12, 2012 at 3:00 AM
Edited Jun 12, 2012 at 3:02 AM

Just pass the links with https instead of http, once you have the SSL cert and applied it, and it should be secure for all transactions.

vfpencryption71.fll  might be overkill unless you have specialized needs.  I suppose that if someone grabbed your VFP database somehow, it might be needed for sensitive data but this is unlikely on the web.

Coordinator
Jun 12, 2012 at 3:14 AM

Thanks, Claude.  Appreciate the quick response.

OT:  Any news on foxpress initial release?