If a webpage is served over https and to authenticate it receives both login and password as unencrypted POST parameters (free text) is it considered unsafe?
Asked
Active
Viewed 56 times
0
-
1Do you mean the POST goes over HTTPS (encrypted), or the POST goes over a different HTTP URL (not encrypted)? – user Jun 15 '22 at 16:30
-
the POST goes over HTTPS – Luke G Jun 15 '22 at 17:57