> >Why would you or anyone send your password in clear > >text when all you have to do is self-issue a cert to > >get 128-bit ssl protection? By the way. I read something about the auth part of the https connection starting *before* the ssl-encryption was established, thush sending the apache auth password unencrypted, only to start encrypting right after? Maybe I misunderstood? (hope so). Jelmer _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
- Re: [cobalt-security] Best way to check email securel... Eugene Crosser
- Re: [cobalt-security] Best way to check email securel... Matthew Nuzum
- Re: [cobalt-security] Best way to check email sec... Jeff Lasman
- Re: [cobalt-security] Best way to check email... Michael Korolew
- Re: [cobalt-security] Best way to check e... Jeff Lasman
- Re: [cobalt-security] Best way to check email securel... Eric Thern
- Re: [cobalt-security] Best way to check email securel... Jelmer Jellema
- Re: [cobalt-security] self issue of certificates Gerald Waugh
- Re: [cobalt-security] self issue of certificates Jelmer Jellema
- Re: [cobalt-security] self issue of certificates Jeff Lasman
