|
-
Jun 20th, 2001, 09:12 AM
#1
Thread Starter
Addicted Member
Security issue
I've made a login form, which send login & pass to our server, which is keeping data encoded in a database. (It encodes the password upon reception) I'm pretty confident about the encryption & security of the database, but I'm not about the fact of sending login & pass.
Can such vital data be viewed using a sniffer or something else ? If so, what should I do to avoid this ?
-
Jun 20th, 2001, 09:59 AM
#2
Black Cat
Can such vital data be viewed using a sniffer or something else ?
Yes, quite easily. You need to look into SSL / HTTPS, which will encrypt the data as it sent over the internet.
I'm pretty confident about the encryption & security of the database, but I'm not about the fact of sending login & pass.
A lot of places don't secure there databases well - they just focus on the internet transmissions, so you're definately on the right track.
Josh
Get these: Mozilla Opera OpenBSD
I have books for sale: "MCSD in a Nutshell" and "VB Distributed Exam Cram" - PM me for details. Will also trade for a decent ATX Pentium 2 MB/CPU/RAM combo.
-
Jun 20th, 2001, 10:09 AM
#3
Thread Starter
Addicted Member
Ok, then, where can I find information to use SSL or/and HTTPS since I know both are use widely ?
It would probably the best way...
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote