in reply to Re: HTTPS
in thread HTTPS

not to nitpick, but...

HTTP connections are neither encrypted nor authenticated

Not true. HTTP supports optional authentication mechanisms, and RFC 2617 covers two of them: Basic authentication and Digest authentication.

Whether you trust the former, or whether your current browser implements the latter, is of course another story ;)

Replies are listed 'Best First'.
Re: Re: Re: HTTPS
by trantor (Chaplain) on Aug 17, 2001 at 10:01 UTC

    You're talking about a protocol feature that allows a client to submit a username/password pair to the server.

    I was talking about the underlying SSL mechanism that allows a client to verify the server's identity using certificates (very simplified).

    -- TMTOWTDI

[reply]

In Section Seekers of Perl Wisdom