Technically, the form page does not need to be secured. However, most sites do it to give the users a warm-fuzzy.
Once the form as been loaded, that connection is broken and has no bearing on the second domain's request/post. As long as the "action" is secured, everything will be fine. m!ke -----Original Message----- From: Daniel Roberts [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 9:47 AM To: CF-Talk Subject: https question Setup: - a user is on a form at "site/domain 1" with https - the form submits to "site/domain 2" which also has https Question: Is the data sent from the form on site1 to the processing page on site2 secure? Does the browser first get a secure connection to site2 before submitting the data? ...or is the data sent from one domain to another insecure? Thanks for any info on this. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;160198600;22374440;w Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:297915 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
