On Mon, Jan 29, 2001 at 10:20:00AM -0000, Min Sheng Lu wrote:
> Just wondering how secure is basic authentication over SSL?
> The way I understand SSL is that it runs over TCP/IP and and under HTTP, so
> all HTTP traffic is encrypted, including the user/password pairs send by the
> browser with each page request when basic authentication is used.
> Is that correct?
>
Yes.
See http://www.modssl.org/docs/2.7/ssl_intro.html
vh
Mads Toftum
--
`Darn it, who spiked my coffee with water?!' - lwall
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
