Nick, md5 is a hashing function, not an encryption function. You need anti-replay if you want the password transfer to be secure
On Tue, 18 Feb 2003, Clarkson, Nick wrote: > Would this pass both variables in clear text back to the server ? If so > would it be better to do this; > > [cut] > > Would this then pass both variables after being hashed with md5 ? Am I > barking up the wrong tree ? Or just plain barking ;oD -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php