All CDF e-logs can be viewed from any location.  Entries or comments to the e-logs can be made from a Web browser running on any of the computers on the B0 subnets (including the B0 building and trailers).  However, from outside the B0 subnets, in order to make an entry or comment in any logbook, you must supply a username and password for an account on the CDF offline (not your Kerberos account).   A Netscape or Internet Explorer Web browser will request this username and password automatically, and it will remember to send them for the duration of the browser session.

          Unfortunately, the username/password is sent over the Internet "in the clear", and thus is vulnerable to interception by others.   It is possible to encrypt the username/password being sent over the Internet by using a server which employs a Secure Socket Layer (SSL).   This is the typical method used by commercial sites to encrypt secure information like a credit card number.   For the CDF e-logs, we use the Apache SSL server.

           The Apache SSL  server allows one or more sockets to be dedicated to encrypted information. For the CDF e-logs, we use socket 443 for encrypted information, and socket 80 for normal access.    Thus, you may notice that any CDF e-log link requiring encryption will contain 443 in the URL (and https, instead of http).   Both Netscape and Internet Explorer browsers implement the encryption scheme used by the Apache SSL server, as long as a valid "Certificate" is recognized.

             A Digital Certificate is a way for a Web browser to verify that the Web server is legitimate, and should be trusted to use any encrypted information properly.   Usually, these certificates are issued by Certificate Authorities, and most browsers have a default list of authorities they recognize.   For example, many commercial sites get their certificates from VeriSign  for a nominal yearly fee.  Since the verification from companies like VeriSign is lengthy and costly, the DOE is in the process of creating their own Certificate Authority to issue certificates.

              Until the DOE starts issuing certificates,  the CDF e-logs will use what is called a "self signed" Certificate.   This is a certificate created by the CDF online, based on the SSLeay/OpenSSL software. However, since the CDF on line is not a default Certificate Authority for most browsers, your browser likely will not recognize this certificate the first time you try to make an entry or comment in the CDF e-logs from outside the B0 domain.   However, by following the procedure described below, you can authorize your browser to recognize the CDF online Certificate for the session only, or for all times in the future. Characteristically, the procedures for Netscape and Internet Explorer are different, so please click on the procedure appropriate for your browser.
 

 Netscape procedure
 

 Internet Explorer procedure