[nycphp-talk] NEW PHundamentals Question - HTTP Authentication
inforequest
1j0lkq002 at sneakemail.com
Sat Oct 23 13:53:50 EDT 2004
It seems we have some differences of opinion.
Matthew Terenzio says:
"While it is a step up from clear text, It should be made abundantly
clear that it is not for purposes of hiding sensitive data from hackers. "
while Ophir Prusak says:
"2. HTTP Authentication is probably more secure than anything you'll
ever write yourself. Especially if you implement it at the server level
(.htaccess) you won't have to worry as much about security holes in your
code :)"
Do you two care to comment further?
-=john
More information about the talk
mailing list