I considered that. Maybe I'm splitting hairs here. :-) Thanks :)
-----Original Message----- From: Mike Townend [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 17, 2002 9:43 AM To: CF-Talk Subject: RE: Repost OT: URL vars on SSL How about using a form post rather than a url get? -----Original Message----- From: Carlisle, Eric [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 17, 2002 14:38 To: CF-Talk Subject: Repost OT: URL vars on SSL I'm syndicating xml content over an SSL connection. I'm looking for a good way to authenticate the user. I'd prefer to keep the solution in application logic instead of changing IIS settings (challenge response authentication, IP ranges, etc...), but if I must, I must. Are these URL vars "safe" in this example? If not, can anyone suggest a better way? https://www.foo.com/xml.cfm?username=user&password=pass (I'm planning on encrypting the user/pass, though not shown above). Thanks :) ETC ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm
