The standard way to do is using HTTPS as noted above. If you use javascript or something similar on the client side (browser side) then you are just adding on unnecessary work. Bharat
On Oct 23, 8:15 am, Shuaib85 <[EMAIL PROTECTED]> wrote: > Hi > I am referring to the login page of the users. I noticed that the > password travels unencrypted. So, I wanted to encrypt it on the user > side > > any other ways beside https and javascript? > > thanks > > On Oct 23, 5:57 pm, Andrew Porter <[EMAIL PROTECTED]> wrote: > > > > > Shuaib85 wrote: > > > Hi > > > > I was looking through my logs and I found that the password field in > > > rails does not get encrypted. It is sent not encrypted from the > > > browser. Is there anyway that I can encrypt the password field so if > > > some one intercept the packets he will not be able to read the > > > passwords > > > What is this password field that you are referring to ? Rails doesn't > > have one by default. If you want secure http use https. You could > > encrypt the password with some javascript before submission but that's > > easily reversible just by looking at the code (it would have to be a > > reversible algorithm for you to process on the server side).- Hide quoted > > text - > > - Show quoted text - --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
