Hi everyone, I was wondering how the standard authentication handles user passwords. Especially I would like to know whether those passwords get sent from the client to the server in plaintext or whether they get encrypted.
Or in other words is it safe to use a non-encrypted http connection or should I use to a SSL https connection to prevent password sniffing. Thanks for your help, --Alaina _______________________________________________ users mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/users
