[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [WEB SECURITY] username & pw in clear-text through SSL considered safe?

From: "Martin O'Neal" <martin.oneal@xxxxxxxxxxxx>
Subject: RE: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
Date: Thu, 19 Jun 2008 07:06:24 +0100

> Once an SSL session is cracked 
> the password will be in the clear.

If you don't trust SSL, and the data is valuable enough to cause you
concern, then web apps probably aren't the appropriate delivery
mechanism.

Martin...

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives:
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS:
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA

References:
- [WEB SECURITY] username & pw in clear-text through SSL considered safe?
  - From: wilke rodriquez
- Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
  - From: Rohit Lists
- RE: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
  - From: wilke rodriquez
- Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
  - From: Chris Varenhorst
- Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
  - From: Ivan Ristic
- Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
  - From: Ivan Ristic

Prev by Date: RE: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
Next by Date: Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
Previous by thread: Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
Next by thread: Re: [WEB SECURITY] username & pw in clear-text through SSL considered safe?
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site