I wonder if anyone knows what kind of authentication whiist uses for it's password protected webpages. What I can see it uses http:// rather than https:// by default, how do I get the pages properly safe. I don't want to expose the passwords on the net and as WHS is blessed with a real certificate for the https:// I feel it should be used. (I know too little about IIS security model. )
I already do that but wanted to know what kind of protection one have with the password protected sites in "whiist". I guess many uses protected sites that whiist creates and as a lot of people ask me about the security and I have no proper answer to them yet whether it's secure enough or not. Just wanted to shed some light on the matter.