secure login page to public internet site - WEBDEV 2024 - Fóruns de programação

GRUPOS DE DISCUSSÃO PROFISSIONAL
WINDEV, WEBDEV e WINDEV Mobile

Inicio | Mensagens recentes | Conecte-se... | | Português

Inicio → WEBDEV 2024 → secure login page to public internet site

secure login page to public internet site

Iniciado por KuSe, fev., 23 2011 6:07 PM - 1 resposta

KuSe

Membro registado
3 mensagems

Publicado em fevereiro, 23 2011 - 6:07 PM

Hi
I've created a login page in Webdev 15 which sends a user and password to the server where this is compared to an encrypted database.
I use the 'Crypt' command for this.
Problem is, 'crypt' only exists at server side coding and not at browser side coding.
This means the login and password are sent uncrypted over the internet to my public internet site.

Is this not a security issue? Doesn't this mean someone can intercept the login and password and use it for hacking?
If yes, how can I avoid this?

thanks for all the help

Denunciar

Deve estar conectado para avaliar esta mensagem

Adi

Publicado em dezembro, 03 2011 - 5:46 PM

You can also start your authentification page from httpS (ssl). In that case you are passing parameters from page to page inside of encrypted tunnel managed by your server and the browser...when authentification has been done you can easily switch from httpS to http.

Adi

Denunciar

→ Voltar para WEBDEV 2024