On 2006-03-27, David Woolley <[EMAIL PROTECTED]> wrote: > Using SSL will give people a false sense of security
Using SSL keeps clear-text passwords off the wire. > and possibly cause them to use passwords that are used for other > purposes that are more sensitive That's their choice. > (I doubt many people use a different password for every site, That's their choice. > The only purpose of your certificate is to trick the web server into > offering an unauthenticated connection, against its better judgement, > and probably against that of the browser. In our application the purpose of SSL is to keep clear-text passwords off the wire. > If you still want to offer null authentication, Who said anything about offering authentication? -- Steve Kostecke <[EMAIL PROTECTED]> NTP Public Services Project - http://ntp.isc.org/ _______________________________________________ questions mailing list [email protected] https://lists.ntp.isc.org/mailman/listinfo/questions
