+ Post New Thread
Results 1 to 5 of 5
Virtual Learning Platforms Thread, http or Https moodle? in Technical; Getting our server set up for outside access to moodle, our VLE. Should it be set up for HTTP or ...
  1. #1

    Join Date
    Feb 2009
    Posts
    24
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    http or Https moodle?

    Getting our server set up for outside access to moodle, our VLE.
    Should it be set up for HTTP or HTTPS? no money transactions will take place on there, but there will be lots of student data on there.
    If it is set up as HTTPS what else will i need to do? get a security certificate? hows this work and how much does it cost.

    Cheers

  2. #2

    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,160
    Thank Post
    98
    Thanked 318 Times in 260 Posts
    Blog Entries
    4
    Rep Power
    111
    If there's any data on there which could identify students (and there will be) then you'll need HTTPS. To do that you'll need to get an SSL certificate, I believe there are a few threads around here which tell you where you can get free ones for education.

  3. #3

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,802
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224
    Also be aware that using HTTPS across the whole site will cause increased CPU load on your web server. If this becomes an issue, you can get 'HTTPS/SSL accelerator' cards that offload the encryption from the main CPU. Although they aren't cheap.

  4. #4

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,342
    Thank Post
    367
    Thanked 624 Times in 509 Posts
    Rep Power
    156
    Godaddy do a basic SSL license for 20 per year, there are a few others at a similar cost.

    If you ask your LA\look on becta, there is a list of items that the are defined as unique, therefore you must make sure they are secure. Personally, I would use HTTPS, not too much hassle and any extra security is a bonus, plus, lets face it, if it isn't need to be secure now, you can be sure it will in the future.

    It's better to do it then have someone breathing down your neck asking why it isn't later on.

  5. #5

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,342
    Thank Post
    367
    Thanked 624 Times in 509 Posts
    Rep Power
    156
    Quote Originally Posted by Geoff View Post
    Also be aware that using HTTPS across the whole site will cause increased CPU load on your web server. If this becomes an issue, you can get 'HTTPS/SSL accelerator' cards that offload the encryption from the main CPU. Although they aren't cheap.
    Soekris Engineering > vpn14x1 - 63.00 EUR

    I know Sun servers normally come with SSL accelerators, I know the Sparc's are rather good at it too. Also The VIA C7 cpu have built in encryption ( LinITX.com - VIA EPIA ). To be honest, your better off getting a good dual core CPU. The vpn cards are for embedded machines.

    If you're looking at a getting a new server and your using linux\unix, ask Sun. Otherwise, just pay an extra few quid for a faster cpu.

SHARE:
+ Post New Thread

Similar Threads

  1. IIS problems http to https redirection
    By cheredenine in forum Internet Related/Filtering/Firewall
    Replies: 7
    Last Post: 27th February 2009, 05:14 PM
  2. Replies: 1
    Last Post: 12th December 2008, 03:10 PM
  3. Moodle and HTTPS
    By timbo343 in forum Virtual Learning Platforms
    Replies: 12
    Last Post: 24th January 2008, 04:07 PM
  4. RDP over HTTP / HTTPS
    By GrumbleDook in forum Windows
    Replies: 2
    Last Post: 3rd September 2006, 09:37 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •