Forum OpenACS Development: Re: HTTP Auth

Collapse
2: Re: HTTP Auth (response to 1)
Posted by Antonio Pisano on
Hello Dave,

I cannot comment on the status of the package, but I feel confident about telling you that SSL recommendation still holds, because once the token is issued, everybody being able to sniff it over the connection could get access to the server.