Best Practices – https – password encryption

This topic contains 1 reply, has 2 voices. Last updated by Bruce 3 years, 5 months ago.

Topic Author	Topic
Posted: Monday Jul 29th, 2013 at 6:19 pm #54355
Cynthia Traxler Username: maketrax
My client is planning on purchasing the Pro version of s2Member. They have a requirement for a very secure environment for the data on the site I am developing for them. Before I suggested they use s2Member for site access, they had installed a HTTPS plug-in called WordPress HTTPS (Mike Ems). My best practice question is: Is this overkill? Do I need to use the HTTPS plug-in, or does s2Member have setting that handle encryption. The client is especially concerned about passwords being encrypted as they are passed across the ‘net. TIA, Cynthia Traxler

Viewing 1 replies (of 1 total)

Author	Replies
Author	Replies
Posted: Tuesday Jul 30th, 2013 at 10:42 pm #54437
Bruce Username: Bruce
My best practice question is: Is this overkill? Do I need to use the HTTPS plug-in, or does s2Member have setting that handle encryption. The client is especially concerned about passwords being encrypted as they are passed across the ‘net. s2Member allows you to set Posts and Pages to load in HTTPS mode with an SSL certificate using a custom Post value. However this does not affect things like log in forms, or any processes that are not done on a Post/Page. I’m not personally experienced with the HTTPs Plugin you mentioned, but I know that I have seen this used in conjunction with s2Member in the past. If you just want to secure your checkout forms, then I would say that s2Member alone should be enough. Otherwise, you can leave the current plugin installed. It shouldn’t hurt anything. :-)

Viewing 1 replies (of 1 total)

This topic is closed to new replies. Topics with no replies for 2 weeks are closed automatically.

Old Forums (READ-ONLY): The community now lives at WP Sharks™. If you have an s2Member® Pro question, please use our new Support System.