SSL encryption for kOOL
You should be using SSL encryption for your kOOL installation, to protect your data on its journey through the network/internet.
The details of installing and handling an SSL encrypted webpage is beyond the scope of this instructions. Check the documentations and mailinglist of your webserver. For apache you find some information on www.modssl.org
You can use any SSL certificates, you can buy from Thawte, VeriSign etc. But you can also create and sign your own server certificates. A good documentation on how to do this can be found here:
SSL with mod_ssl for apache
If you use mod_ssl for apache, the following hints and configurations might be helpful to you.
SSL with virtual hosts
If you can't or don't want to assign a separate ip to every kOOL installation on your server, you can still use SSL encryption for every virtual host by using different ports. The following configuration shows a possible setup with a permanent redirect to the https url.
Make apache listen on port 80 AND 1443
Add a permanent redirect to the https url
Add the SSL settings to your virtual host configuration