diff --git a/examples/secure-terminals.txt b/examples/secure-terminals.txt
new file mode 100644
index 0000000..1236594
--- /dev/null
+++ b/examples/secure-terminals.txt
@@ -0,0 +1,69 @@
+How to protect the password for YBDB in a public environment.
+
+PROTECTING A DIRECTORY UNDER A WEBSERVER (apache 2.4)
+
+A. The htpasswd command is found in the apache2-utils package.
+
+B. htpasswd -Bc -C 10 htpasswd test (note that bcrypt is used)
+
+C. chown www-data:www-data /var/htpasswd; chmod 0400 /var/htpasswd; \
+
+D.
+ Authtype Basic
+ Authname "Amazing Community Bike Shop Login"
+ Require user someuser
+ AuthUserFile /var/htpasswd
+
+
+
+SSL (do not settle for anything less)
+
+Under Debian:
+A. openssl req -new -x509 -nodes -out ssl-cert-snakeoil.pem -days 36500 -keyout ssl-cert-snakeoil.key (100 year certificate)
+B. cp ssl-cert-snakeoil.key /etc/ssl/private/
+ cp ssl-cert-snakeoil.pem /etc/ssl/certs/
+C. a2enmod ssl;
+ a2ensite default-ssl.conf; (standard on debian-based distributions .. add stanza above)
+ a2dissite 000-default.conf;
+
+
+TERMINAL AUTOMATION AND SECURITY
+
+Firefox (IceWeasel):
+1. Download KeePass v2 zip - http://keepass.info/download.html
+2. Unzip in ~/KeePass
+3. cd ~/KeePass; mkdir plugins
+4. In Debian/Ubuntu: apt-get install mono-runtime mono-devel
+5. Install KeeFox extension from https://addons.mozilla.org/en-us/firefox/addon/keefox/
+6. KeeFox will tell you where to copy KeePassRPC.plgx from into the plugins directory
+ Usually somewhere under ~/.mozilla/firefox/*default/extensions/keefox*
+7. When setting up password database for KeePass use only a key file.
+8. Add the url along with username and password in the database.
+9. Once the login is working properly for the htpasswd setup for apache,
+ the whole process can be completely automated in KeeFox options.
+10. In Firefox (IceWeasel) Preferences -> General use "When IceWeasel starts: Show my windows and tabs from the last time"
+
+Chrome:
+1. Download KeePass zip - http://keepass.info/download.html
+2. Unzip in ~/KeePass
+3. When setting up password database for KeePass use only a key file.
+4. Add the url along with username and password in the database.
+5. In Debian/Ubuntu: apt-get install mono-runtime mono-devel
+7. Install extension chromeIPass
+8. Install keepasshttp as explained at https://github.com/pfn/keepasshttp/ (put KeePassHttp.plgx in ~/KeePass)
+9. Follow the directions chromeIPass gives you, creating an identifier
+10. Good idea to restart chrome.
+11. In Chrome Settings "On Startup Continue where you left off"
+
+There are other things that can be done within the terminal to prevent tampering, e.g., read-only environment,
+but the above protects the password from hacking, eavesdropping, and from regular users
+in the shop, basically, only the sysadmin and bookkeeper should have remote access via the password.
+So, YBDB, although on the internet will be confined to the terminal(s) you allow it to be on, and
+the Point of Sale will be at the proper location .. at the front of the Community Bike Shop where people
+walk-in/walk-out.
+
+
+
+
+
+