I'm looking for any ideas on how to communicate a password
(entered into a browser form on a jsp page) to a servlet or bean securely.
As far as I can tell, on a POST my password text is plainly exposed
(unencrypted) as it traverses HTTP back to the server. This can't be
the norm. How do Yahoo, Excite and others implement this when logging on?
Thanks in advance for any input.
Casey
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
FAQs on JSP can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
