Securing a website with client SSL certificates
Let's assume that you have an Apache webserver and a website that you want VERY finite access controls on. You could do it a number of ways, right?
Or, you could create a custom SSL certificate and give that certificate to very specific users that should have access to your site. In a perfect world, only these users could communicate with your site AND the connection would be secured via the magic of SSL.
At A Day in the Life of an Information Security Investigator.
[ Read more ]