Difference between revisions of "SSL"
From Hackepedia
Jump to navigationJump to search| Line 1: | Line 1: | ||
| − | Originally created by the people at Netscape, the Secure Socket Layer (SSL) has been adopted as a standard for transfering data over the internet. If you've ever been to a website where the URL starts with https:// instead of the typical http://, you are using SSL. This means there is an encrypted tunnel between you and the remote machine, so everything transferred not be done in the typical plain text which is fairly trivially [[packet sniffed]]. | + | Originally created by the people at Netscape, the Secure Socket Layer (SSL) has been adopted as a standard for transfering data over the internet. If you've ever been to a website where the URL starts with <nowiki>https://</nowiki> instead of the typical <nowiki>http://</nowiki>, you are using SSL. This means there is an encrypted tunnel between you and the remote machine, so everything transferred not be done in the typical plain text which is fairly trivially [[packet sniffed]]. |
| − | Only enter personal information or credit card information into a website that is using https:// in the URL, this is covered in the [[User Registration|Registration:User]] process. | + | Only enter personal information or credit card information into a website that is using <nowiki>https://</nowiki> in the URL, this is covered in the [[User Registration|Registration:User]] process. |
To get an idea of what happens behind the scenes when you surf the web using your browser to an SSL website: | To get an idea of what happens behind the scenes when you surf the web using your browser to an SSL website: | ||
$ openssl s_client -connect [[variables|http://www.example.com]]:443 | $ openssl s_client -connect [[variables|http://www.example.com]]:443 | ||
Revision as of 16:21, 30 October 2005
Originally created by the people at Netscape, the Secure Socket Layer (SSL) has been adopted as a standard for transfering data over the internet. If you've ever been to a website where the URL starts with https:// instead of the typical http://, you are using SSL. This means there is an encrypted tunnel between you and the remote machine, so everything transferred not be done in the typical plain text which is fairly trivially packet sniffed.
Only enter personal information or credit card information into a website that is using https:// in the URL, this is covered in the Registration:User process.
To get an idea of what happens behind the scenes when you surf the web using your browser to an SSL website:
$ openssl s_client -connect http://www.example.com:443
