Rene Veerman wrote:
Just for this case, where authentication of the server isn't an issue, and things like deployment cost are,i'd like to propose that we on this list look again at securing login/pass through onewayHash functions, in an otherwise non-ssl environment.i hate to be a critic of the community here, but isn't this insistence on SSL a bit eh... lazy?
No. It's the right way to do it. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php