Hello list, I'm pretty new to Secure Sockets Layer and Secure HTTP, still breaking my head and learning new (and interesting stuff) all the time.
While I was creating my user account in OSCommerce-based website, when I finally clicked to submit the form, I was faced with the following FireFox warning: "Although this page is encrpypted, the information you have entered is to be > sent over an Unencrypted connection and could be easily read by a third > party. > Are you sure you want to contine sending this information?" I then thought - "Uh? Hmmm, here's an opportunitty to learn something..." - I went directly into the HTML form's action an noted that the action was the same URL but prefixed with the regular HTTP protocol. Hmmm... now here's my doubt: Does that mean that the developer made the link to the create account page via HTTPS (not important at all) and then forgot the really relevant part, which is to send the html form contents via HTTPS? Marcelo.
