.htaccess and clear-text password
I have a lot of .htaccess files pointing to LDAP for authentication. When users authenticate, their username and password fly clear-text on the network. Is there anyway to encrypt these passwords so when they fly on the network, the fly encrypted? I don't want to HTTPS the entire site or various different places I use .htaccess - that would require too much work in httpd.conf. I would rather do something on the .htaccess file if that's at all possible.
Any help on this would be much appreciated. Thanks.
Somebody other will very probably be able to give deeper answers, but searching the web gives sites like this:
Quoted from the above page:
I'd say if you're running a server, altering a configuration file (httpd.conf) can't possibly be too much work, if it's about security :)
|All times are GMT -5. The time now is 11:52 PM.|