in reply to Re: Re: Ecrypting passwords
in thread Ecrypting passwords
Digest Auth still effectivly transfers the password in plaintext no? sure the client hashes to md5 or whatever but someone listning on the line can use that hash to auth just as easily as the plaintext version. I have not read the full RFC but that is my understanding of it.
-Waswas
-Waswas
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: Re: Re: Re: Ecrypting passwords
by tilly (Archbishop) on Oct 06, 2003 at 05:18 UTC | |
by Molt (Chaplain) on Oct 06, 2003 at 10:42 UTC | |
by tilly (Archbishop) on Oct 06, 2003 at 14:11 UTC | |
by iburrell (Chaplain) on Oct 06, 2003 at 21:47 UTC | |
Re: Re: Re: Re: Ecrypting passwords
by Willard B. Trophy (Hermit) on Oct 06, 2003 at 17:18 UTC | |
Re: Re: Re: Re: Ecrypting passwords
by bdonlan (Novice) on Oct 07, 2003 at 22:32 UTC |
In Section
Seekers of Perl Wisdom