25 Feb
2010
25 Feb
'10
7:21 p.m.
Hi everyone,
I was wondering how the standard authentication handles user
passwords. Especially I would like to know whether those passwords get
sent from the client to the server in plaintext or whether they get
encrypted.
Or in other words is it safe to use a non-encrypted http connection or
should I use to a SSL https connection to prevent password sniffing.
Thanks for your help,
--Alaina