[Pdweb] please put the dev docs back
IOhannes m zmoelnig
zmoelnig at iem.at
Wed Sep 27 17:36:11 CEST 2006
Mathieu Bouchard wrote:
> On Wed, 27 Sep 2006, IOhannes m zmoelnig wrote:
>
>> that was the point: people are automatically redirected to
>> https://<whatever> when (before) they log into the portal, in order to
>> not transmit passwords in plain-text. when they now edit their page,
>> they often just copy the link from the linkbar (which now is on
>> https). anonymous (http) visitors of the website, now get loads of
>> https-links (and the poor server's load jumps up)
>
> Why not use challenge-response authentication over plain http? That's
> secure enough, yes?
so how?
mf.asdr
IOhannes
More information about the pdweb
mailing list