Security question!

[Jens Jensen]

Does the new asp.net 2.0 login control send unhashed pasword to the server
from the user browser?

How does it make sure the password cant be sniffed?


Thanks
JJ

 

[Ray Booysen]

Does the new asp.net 2.0 login control send unhashed pasword to the server
from the user browser?

How does it make sure the password cant be sniffed?


Thanks
JJ

Unless the site is set to SSL, the password will be sent as plaintext.

Regards
Ray

 

[Jens Jensen]

Ok,
JJ