RE: [pmm-cms-developers] V2 Status - March 22, 2005

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

On the SSL issue, it is likely that most all stations will have some
way somehow to get SSL access, although depending on their hosting
situation it may cost them additional money to set it up and keep it
on a monthly basis. In the case of University-hosted operations, there
may be no SSL at all, as the institution may be unwilling to present a
security risk.

This package is by far most likely to be distributed to small stations
who have no knowledge of SSL or why they would need it, or even how to
request it. So mandating its availability adds a complication factor
that these folks don't probably want or need.

Are you planning SSL for admin access? if so, seems like using
htaccess for authentication might be an easier way to insure
protection. I know it doesn't completely protect the system from
unauthorized access, but then what does?

Thanks,
Bill