On a get request, the password would be present in the URL - http://localhost:8080/yourApp/Login.action?username=username&password=yourpassword
This is probably not a *huge* deal, but there are places where requests might be logged... Proxy servers, etc. -Wes 2008/10/29 Paweł Wielgus <[EMAIL PROTECTED]>: > Hi Hernán, > >> Of course, you should never use GET when submitting a password, but that's a >> privacy concern you (developer) just deal when writing your jsp. > > could You elaborate more about the reason why? > > Best greetings, > Paweł Wielgus. > -- Wesley Wannemacher President, Head Engineer/Consultant WanTii, Inc. http://www.wantii.com
