This is an archived forum and the content is probably no longer relevant, but is provided here for posterity.
The active forums are here.
November 22, 2010 6:28am
Subscribe [3]#1 / Nov 22, 2010 6:28am
I have a site which has about 75 custom fields for registering children for a nursery.
There is information about parents, doctors and contacts etc. on there.
Although I asked this question at the beginning of the project, one of the members has asked if the data is secure and after looking at post about data encryption on the forum, was wondering If the site needs any extra security features?
I have the various member group permissions to view public profiles, turned off.
#2 / Nov 22, 2010 6:42am
Sorry,
build 20100430
v1.6.9
#3 / Nov 22, 2010 10:45am
Have you tried to find out the information as a non-logged in user? For instance, I can see your memberlist on your site..
#4 / Nov 22, 2010 10:57am
Hi Sue
This seems to be hidden from mother members and guests. (it’s not redfred.co.uk if this was what you’re thinking!)
I was wondering if the registration form data and pages (once logged in) should be passed through an SSL?
#5 / Nov 22, 2010 3:18pm
I was wondering if the registration form data and pages (once logged in) should be passed through an SSL?
Ultimately that would be for you to decide. This has got nothing to do with EE as such; unencrypted connections are easy to “snoop” on, SSL prevents that. If we are talking about sensitive data this is probably a good idea.
#6 / Nov 24, 2010 11:14am
How can I change the action of the registration form to =“https://...
Likewise with the member login form?
#7 / Nov 24, 2010 3:18pm
I think there are some third-party add-ons. Alternatively, a server-side rewrite, forwarding all or certain http: requests to the appropriate https: address should work.