Thread: https access
View Single Post
Old 03-12-08, 06:07 AM   #5
Registered User
Runningman's Avatar
Join Date: Feb 2008
Posts: 925
Default Re: https access

Originally Posted by pgs
That would not help for the login issue.

Maybe there is some misunderstanding here.

The problem is that, in normal http connection, the login+password could be "sniffed" and used later by someone else.
just make your password unique from your other passwords and you shouldnt worry about these types of things but i hate to inform you but https suffers from man in the middle attacks also. so if they can "sniff" your clear texted passwords, chances are they can man in the middle you also.

please read up on this type of attack vector.
Runningman is offline   Reply With Quote