The office system needs to be deployed on the public network. Due to schedule and cost reasons, VPN is not available for the time being. I put an apache on the front end and then configured a basic verification. Can this method achieve theoretical security? What should I pay attention to? Woolen cloth
曾经蜡笔没有小新2017-05-16 17:05:10
Basic verification passwords are all in clear text, and the data transmitted after verification will not be encrypted in any way, so it is not safe no matter how you look at it.
If you want to save time, buy an SSL certificate, and then add Basic verification, which will be secure enough.
为情所困2017-05-16 17:05:10
You can use your mobile phone as the authentication medium, which is much safer than simple basic and easy to use.
