Hi! On Apr 3, 2:21 pm, Thomas Mueller <[email protected]> wrote: > Hi, > > > I use the iBatis framework to establish a connection. I have > > Could you still tell me what is your database URL?
jdbc:h2:~/db;schema=testschema > I will change the sentence in the documentation to: > > "For server mode connections, user passwords are never transmitted in > plain text over the network (even when using insecure connections; > this only applies to the TCP server and not to the H2 Console however; > it also doesn't apply if you set the password in the database URL)" > > Maybe you mean the H2 Console. It is true that the password is sent > from the browser to the Console without encryption (if using http://). > While I could implement SHA256 in Javascript, it would be slow, and it > would only work for H2 databases. But the H2 Console should support > other databases as well. Thats fine with me. I just wanted to point out that I could intercept the user/pass. Im not certain if what I found is relevant but I thought that it couldn't hurt to mention it here. Thanks for your time. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "H2 Database" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/h2-database?hl=en -~----------~----~----~----~------~----~------~--~---
