Just wondering how secure is basic authentication over SSL?
The way I understand SSL is that it runs over TCP/IP and and under HTTP, so
all HTTP traffic is encrypted, including the user/password pairs send by the
browser with each page request when basic authentication is used.
Is that correct?
thanks for any help.
Min
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
