Topic: How secure is the user-id dialog? |
|
---|---|
Author | Thread |
Paranoid (IV) Inmate From: Madison, Indiana, USA |
posted 09-30-2003 21:15
I was having a discussion with a friend about the user-id/password box that pops up on some web pages and I said I had heard some time ago that these boxes are as secure as you would need to protect a site or a page. He said he thought they had been hacked in the last couple of years and you need extra security measures to make sure unauthorized people don't get into the site. |
Lunatic (VI) Mad Scientist From: Massachusetts, USA |
posted 09-30-2003 22:09
Over a secure connection, they're as secure as anything. Without a secure connection, even though the password is encrypted on the server, one could intercept someone's login on the way to the server and determine what their password is. |
Paranoid (IV) Inmate From: NZ |
posted 10-01-2003 12:36
Is that something like https or those kind of things, Slime? |
Paranoid (IV) Inmate From: Madison, Indiana, USA |
posted 10-02-2003 17:28 |
Lunatic (VI) Mad Scientist From: Massachusetts, USA |
posted 10-02-2003 19:22
Yeah, I was referring to https. (.shtml doesn't actually have anything to do with security; it usually has to do with SSI includes on the server.) |