On 20/11/2010 22:19, Rob Lemaster wrote: > Isn't mod_ssl used solely for HTTPS (browser-server encryption)? I > would like to use PKI for user authentication like you can in SSH on > top of the encryption provided by HTTPS. The most secure option I see > available for web authentication currently is OTP tokens (RSA,etc) > that only work on one web site. > > thanks, > -rob > Nope, you have full x509 based authentication out-of-the-box. See http://httpd.apache.org/docs/2.2/ssl/ssl_howto.html#allclients
Issac