There's still a performance hit for SSL. Solutions for that include load balancers with dedicated hardware SSL support.
As for what the performance hit is, try this: http://serverfault.com/questions/43692/how-much-of-a-performance-hit-for-https-vs-http-for-apache
Re: HTTPS all vs. only on login page - as the recent Facebook session hijacking proved, it's the session cookies in cleartext that are the security problem - it doesn't sniff your password, it steals your session cookies to access your account.
HTTPs should be on everything, IMHO.
Cheers
Leigh
TFA concludes with "But if all it takes is a few clicks of a mouse in vSphere's Windows-based client to pop out a cloned server instance (ostensibly built by someone who knew what they were doing), then what does it matter? It's all very convenient and cool, right? Wrong. If you don't understand the underpinnings, you're missing the point. Anyone can drive the car, but if it doesn't start for some reason, you're helpless. That's a problem if you're paid to know how to fix the car."
While I agree in principle, the analogy here is off. If the car doesn't start in this case, I can just throw it away and clone a working one.
Slashdot Mirror
Merlin Mann's been saying this for years. Nice to see the concept getting te attention it deserves :-)
There's still a performance hit for SSL. Solutions for that include load balancers with dedicated hardware SSL support. As for what the performance hit is, try this: http://serverfault.com/questions/43692/how-much-of-a-performance-hit-for-https-vs-http-for-apache Re: HTTPS all vs. only on login page - as the recent Facebook session hijacking proved, it's the session cookies in cleartext that are the security problem - it doesn't sniff your password, it steals your session cookies to access your account. HTTPs should be on everything, IMHO. Cheers Leigh
TFA concludes with "But if all it takes is a few clicks of a mouse in vSphere's Windows-based client to pop out a cloned server instance (ostensibly built by someone who knew what they were doing), then what does it matter? It's all very convenient and cool, right? Wrong. If you don't understand the underpinnings, you're missing the point. Anyone can drive the car, but if it doesn't start for some reason, you're helpless. That's a problem if you're paid to know how to fix the car." While I agree in principle, the analogy here is off. If the car doesn't start in this case, I can just throw it away and clone a working one.
T-Mobile have hotspots all over the place (cafe's, hotels, etc) and at €29 for a month's access (pre-paid, sign up online at any hot spot) you can't beat the price. If you are absolutely certain that no wifi is available where you're going then the previous posters advice of visiting a Vodafone or T-Mobile shop when you land is spot on - both have very good networks in Germany. You can't beat the price of buying local when you arrive! Vodafone USB stick without contract: http://translate.google.com/translate?js=y&prev=_t&hl=en&ie=UTF-8&layout=2&eotf=1&u=http%3A%2F%2Fshop.vodafone.de%2FShop%2Fpicknmix%2Fchoose_callya_tariff.jsp%3FpropositionId%3Dprod233554&sl=de&tl=en T-Mobile: http://translate.google.com/translate?hl=en&sl=de&tl=en&u=http%3A%2F%2Fwww.t-mobile.de%2Fmobiles-internet%2Fmit-dem-notebook%2F0%2C20338%2C23098-_%2C00.html
I wonder how long it will last as the "standard" with Light Peak allegedly only a year away? Source: http://techresearch.intel.com/articles/None/1813.htm