Hi!

On Apr 3, 2:21 pm, Thomas Mueller <[email protected]>
wrote:
> Hi,
>
> > I use the iBatis framework to establish a connection. I have
>
> Could you still tell me what is your database URL?

jdbc:h2:~/db;schema=testschema

> I will change the sentence in the documentation to:
>
> "For server mode connections, user passwords are never transmitted in
> plain text over the network (even when using insecure connections;
> this only applies to the TCP server and not to the H2 Console however;
> it also doesn't apply if you set the password in the database URL)"
>
> Maybe you mean the H2 Console. It is true that the password is sent
> from the browser to the Console without encryption (if using http://).
> While I could implement SHA256 in Javascript, it would be slow, and it
> would only work for H2 databases. But the H2 Console should support
> other databases as well.

Thats fine with me. I just wanted to point out that I could intercept
the user/pass.
Im not certain if what I found is relevant but I thought that it
couldn't hurt to mention it here.

Thanks for your time.

--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "H2 
Database" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to 
[email protected]
For more options, visit this group at 
http://groups.google.com/group/h2-database?hl=en
-~----------~----~----~----~------~----~------~--~---

Reply via email to