OK. Thank you for the good ideas. I actually opted to use mod_ssl in my htaccess file in the protected directory because mod_rewrite and the authentication jazz seemed to be clashing. The mod_ssl stuff seems to work nicely. Unfortunately, I now have a new problem, but still related problem.
I am using a shared certification from my hosting provider. As a result my SSL URLs look different than my non-SSL URLs (https://linestoliveby.startlogic.com vs.
http://www.linestolivebyvinyl.com). This causes a problem for manager cookies. I think the manager is expecting to locate the cookies using the hostname in the current URL, but they are located via the default store URL, or something like that. Is there somewhere I can configure the location of the manager cookies so that I can have multiple, simultaneous manager sessions and SSL?
Regards,
Jeremy
_________________
Jeremy