Jeff Sherk Forerunner Ministries wrote: > Per Erics earlier response, if I encode the username and password in the > URL with https instead of > http, is it secure? > > Like this https://username:password@xxxxxxxxxxxx/foo Provided you are using https: SSL or TLS Upgrade you are assured it is secure because nothing has been transmitted before handshaking is complete. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|