Hi Leszek,
Firstly I want to thank Richard for his great help in this issue.
Based on my research and experience, the following articles are useful to
you.
INFO: Help Secure Forms Authentication by Using Secure Sockets Layer (SSL)
http://support.microsoft.com/default...b;en-us;813829
"...
By default, the cookie that contains the forms authentication ticket is not
secured when you use forms authentication in a Microsoft ASP.NET Web
application. This article describes how to help secure forms authentication
by using Secure Sockets Layer (SSL)..."
INFO: Building Secure ASP.NET Web Applications Guide
http://support.microsoft.com/default...b;en-us;330246
"...
How To: Set Up SSL on a Web Server
..."
I hope it helps.
Best regards,
Jacob Yang
Microsoft Online Partner Support
Get Secure! ¨C
www.microsoft.com/security
This posting is provided "as is" with no warranties and confers no rights.