Stace
_____
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Friday, December 12, 2003 10:05 AM
To: CF-Talk
Subject: RE: non-SSL for post to SSL - secure?
Stace wrote:
>> If you have a form on a html page (not SSL) and it posts to a page
that
>> *is* SSL...the data transmission is secured isn't it ? If this is
true I'd
>> still advise to use SSL on the login page...but this is for a unique
situation.
I asked Thawte this ages ago (so it's from a hazy memory) and they told
me that the SSL tunnel is established before the sending of any data so
I believe your data would be secure...
Altho... from a user perpspective, it's always better to serve the form
in SSL, they are all savvy to that little IE padlock and most want to
see it before continuing
--
-dc [ cf5, ora8.1.7, iis5 ]
_____
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
