Is SSL to the proxy good enough?

Posted by Josh Smeaton on Server Fault See other posts from Server Fault or by Josh Smeaton
Published on 2010-12-21T03:42:14Z Indexed on 2010/12/21 5:22 UTC
Read the original article Hit count: 274

Filed under:
|
|

We are currently trying to decide on how best to do SSL traffic in our environment. We have an externally facing Apache proxy server that is responsible for directing all traffic into our environment. It is also doing the SSL work for the majority of our servers.

There are one or two IIS servers in particular that are doing their own SSL, but they are also behind the proxy.

I'm wondering, is SSL to the proxy good enough? It would mean that traffic within our network is identifiable, but is that such a big deal?

© Server Fault or respective owner

Related posts about security

Related posts about ssl