Oki DZ wrote:
> I created a webpage for accepting users' passwords; but unfortunately,
> when I "submit" the form, the password typed in the page was sent in
> clear-text. How can I encrypt the password? I use a WebMacro template and
> have set the form's action to be "post", but still, the password gets
> inserted in the URL path. (I think it should have been sent to the servlet
> to its standard input stream.)
Oki, the HTTP protocol by definition does not guarantee privacy. If you
want encryption you must use HTTPS. Fortuantely Apache+JServ, Apache+Tomcat
and standalone Tomcat all support HTTPS.
If you want your password to be sent in the body of the request, not in
the URL, set <form method="post">
Rafal
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
