Security

I\'m building my web based on the geeklog engine [1.3.6].
But I am not happy to log to the system via unencrypted channel. When I load the main page via HTTPS and then log-in to the system, auth request is still unencrypted. There is possible to set in the config.php \"$_CONF[\'site_url\']\" to \"https://name.of.site.com\" but then all pages will be served by HTTPS which is stupid. I\'m not familiar with PHP, therefore I can\'t write my own patch.

Any ideas ?

Thanks,

Rado1
rado@rado1.sk

Howdy all. I\'m working on a plugin or two and need some help with a few security concepts.

1) Is there a UID for a guest/anonymous?

2) Do I need to modify the access table directly to allow existing core groups access to the new features I am adding?

3) If I create new groups and I want, say, all registered users to be part of that group whats the best way of going about that?

There were some more really earthshattering questions and insights I\'ve had, but my masterful memory is failing me again so I\'ll come back to them.

Is that any way that we can have a secure static pages templates? if anyone has the answer please let me know.

Thank you very much

andi