Andrew Milton wrote:
In Digest Auth the browser 'hashes' the username and password the user enters and simply
sends the hash. The webserver does the same and compares the hash to the
hash sent by the browser. If they match then you're allowed in.
In Basic Auth the username and password are
No, I read that for digest authentication to work the authentication data can't be encrypted. Therefore it seems perfect for implementing more security on non-SSL sites or sites that don't need SSL but need more security on logon.
On 2/16/06, Chris Withers [EMAIL PROTECTED] wrote:
Hi