SSL Encryption and HTML

[kitchetech at gmail.com (matt donovan)]

On Tue, Oct 28, 2008 at 5:46 PM, Blake Hartstein <urule99 at gmail.com> wrote:

> Cody Ray wrote:
> > Although the login does not occur on a secure HTML page, the login is,
> > in fact, secure.
> SSL Encryption solves multiple problems. However, when used incorrectly
> it may not solve all of the intended problems.
>
> Privacy - Encryption of data, this is good in this case
> Authentication - the user is unable to determine if the server is
> legitimate - bad in this case
>
> > If you want to assure yourself that the information you are sending is
> > secure and you don't see a security icon, you can view the HTML source
> > code.
> I don't like this advice, but it might make a good firefox plugin
> someday. There are plugins that allow you to force HTTPS, but it does
> have the possibility of breaking the server.
>
> Blake
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
last time I knew if the page is not ssl encrypted by default the log in
information can still be seen before it even reaches the https.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20081028/91a303e8/attachment.htm