[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: https question

To: silug-discuss@silug.org
Subject: Re: https question
From: "Leland V. Lammert" <lvl@omnitec.net>
Date: Thu, 22 Jul 2004 11:19:41 -0500
In-Reply-To: <1090512434-7333.012.83-smmsdV2.1.0@saluki-mailhub.siu.edu>
Organization: Southern Illinois Linux Users Group
References: <BAY7-F38GM3h3vLgAus0000fe91@hotmail.com>
Reply-To: silug-discuss@silug.org
Sender: silug-discuss-owner@silug.org

At 11:07 AM 7/22/2004 -0500, you wrote:

>I notice that some "secure" sites are still
>in http when they ask for the username and password,
>and _then_ they go to https.
>
>Is the username and password encrypted before going
>to the https site?  Or should these web sites go
>to the https site, first, and then ask for the
>username and password?
>
>--Chet

Almost all of the time the link that sends a UID/PW is *TO* an SSL site; 
the page you're ON is unencrypted, but as soon as you open the next link, 
it's encrypted. Turn on the security pop-up dialogs to see where the link 
is going (i.e to SSL from non-SSL & non-SSL from SSL).

         Lee

-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.

References:
- Samba Success
  - From: "Ray Holtz" <rayholtz@hotmail.com>
- https question
  - From: "clangin@siu.edu" <clangin@siu.edu>

Prev by Date: Re: https question
Next by Date: Re: https question
Prev by thread: Re: https question
Next by thread: Re: https question
Index(es):
- Date
- Thread