[thelist] session and/or cookie persistence across an ssl and non-ssl connection

Scott Dexter sgd at ti3.com
Thu Jan 17 16:45:43 CST 2002


> around having 2 separate sites, to invoke SSL (but not 
> *require* it) on the

Right. With some scripting thrown in the individual pages to enforce/not
(like redirecting to the https URL)

> But with this setup, the user could effectively browse the 
> entire website
> using SSL, which from a performance and usability standpoint 
> is not that
> great of an idea (especially to our server admins).

There is some performance hit taken with the SSL overhead, but what
usability issues?

> 
> Am I screwed or am I screwed? =)

Kinda

sgd




More information about the thelist mailing list