HTTPS Everywhere brings HTTPS almost everywhere
Posted Jul 5, 2010 4:41 UTC (Mon) by TRS-80
In reply to: HTTPS Everywhere brings HTTPS almost everywhere
Parent article: HTTPS Everywhere brings HTTPS almost everywhere
I wasn't talking about HTTPS with client certs, I was talking about HTTPS with cookied login forms. And yes, there's no registration or forgotten password, hence why I said "shared secret" - it's suitable for environments where those are handled separately, like universities, companies etc.
HTTP auth can't be natively timed out (although there have been some nasty hacks that can work around it; I don't have examples to hand, but could find them if you want), but Firefox 3+ has UI for it, under "Clear Private Data..."
to post comments)