> > I could be totally wrong here, but I was under the > impression that for a > form to be secure it had to be posted from within SSL, > > but I have been hearing that I am wrong, and that even if > its posted > from outside SSL to SSL the connection is secure. Could > > someone confirm one or the other? > > It is my understanding that the form itself MUST be already > in SSL for the > process to be secure.
This has been my understanding as well. However, it could be a myth to sell more SSL certificates :) At any rate, if the form itself is not delivered over SSL, the browser doesn't have the SSL info and the user won't see the little padlock etc. So, from a usability and customer confidence point of view it is essential. K. -- Kay Smoljak http://kay.smoljak.com --- You are currently subscribed to cfaussie as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] MXDU2004 + Macromedia DevCon AsiaPac + Sydney, Australia http://www.mxdu.com/ + 24-25 February, 2004
