Re: Encryption Question

From: David Dorward <dorward@xxxxxxxxx>
Date: Tue, 13 Mar 2007 21:26:24 +0000

eggie5@xxxxxxxxx wrote:

I have a form where a user can change his password, but I'm confused
on how to prevent this from being transmitted in plain text.

Run the request over HTTP with SSL (HTTPS) not plain old HTTP.

JavaScript isn't relevant to the issue.

--
David Dorward <http://blog.dorward.me.uk/> <http://dorward.me.uk/>
Home is where the ~/.bashrc is
.

Follow-Ups:
- Re: Encryption Question
  - From: Bart Van der Donck

References:
- Encryption Question
  - From: eggie5@xxxxxxxxx

Prev by Date: Re: Show and hide divs in FireFox
Next by Date: Re: Encryption Question
Previous by thread: Re: Encryption Question
Next by thread: Re: Encryption Question
Index(es):
- Date
- Thread

Relevant Pages

Re: Encryption Question
... Run the request over HTTP with SSL not plain old HTTP. ... A plain javascript solution is possible without need for HTTPS. ... encrypted string too - which is certainly recommended, ...
(comp.lang.javascript)
Re: Real Software Please Explain Your Spyware Program - Warning: Do Not Try Demo!
... since HTTP is used to send the data. ... if you were that paranoid, you'd snoop the data and notice that it's ... plain text. ...
(comp.lang.basic.realbasic)
Can you send plain-text message Via OWA?
... I have an annoying user who wants to send 2k3 OWA email ... messages in plain text, not HTTP. ...
(microsoft.public.exchange.clients)
Re: ISA 2004 Server Errors
... Tunneling SSL Through a WWW Proxy ... CONNECT is really a lower-level function than the rest of the HTTP methods, ... Through ISA Server ...
(microsoft.public.isa)
Re: RWW with no https
... What you cannot normally do is configure an HTTP SSL listeners to redirect traffic based on HTTP headers. ... Or dump Kerio Mail Server since you have the same capabilities in Exchange;-) ... > port but going to port 8080. ...
(microsoft.public.windows.server.sbs)