+ Reply to Thread
Results 1 to 3 of 3

Thread: is my password sent un-secured ?

  1. #1
    Junior Member
    Join Date
    Jan 2012
    Posts
    35

    is my password sent un-secured ?

    i use that html form :
    Code:
    <form name="register" action="register.php" method="post">
    Username: <input type="text" name="username" maxlength="30" />
    Password: <input type="password" name="pass1" />
    Password Again: <input type="password" name="pass2" />
    <input type="submit" value="Register" />
    </form>
    after submitting data goes to register.php
    Code:
    $u=$_REQUEST['username'];
    $p=$_REQUEST['pass1'];
    my question is when submitting the form from php, does the password goes as text?

  2. #2
    Junior Member
    Join Date
    Jan 2012
    Posts
    30
    The password is now sent in a clear text. so it can be figured out but You can hash the password before it is sent over the HTTP socket with javascript. This isn't as good as using https but still better than nothing.

  3. #3
    Junior Member
    Join Date
    Jan 2012
    Posts
    35
    yeah , that is inspiring . thanks for your help .

+ Reply to Thread

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts