AFAIK, inputs of type password are sent to the server as plain text. In
Login Manager, for example, that would mean that passwords are exposed
every time someone logs in. In User Folder, the passwords would be exposed
whenever they're changed.
If my interpretation is correct, then it seems to me
On Mon, Dec 18, 2000 at 04:02:45PM +, Bill Welch wrote:
AFAIK, inputs of type password are sent to the server as plain text. In
Login Manager, for example, that would mean that passwords are exposed
every time someone logs in. In User Folder, the passwords would be exposed
whenever
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bill
Welch
Sent: Monday, December 18, 2000 11:03 AM
To: [EMAIL PROTECTED]
Subject: [Zope] passwords TTW - security hole?
AFAIK, inputs of type password are sent to the server as plain text