Re: is this webpage secure?
From: Dr Balwinder Singh Dheeman (bsd.SANSPAM_at_sebs.org.in)
Date: 11/29/05
- Next message: Proteus: "where can i telnet or do insecure http form?"
- Previous message: Proteus: "Re: is this webpage secure?"
- Next in thread: Dr Balwinder Singh Dheema: "Re: is this webpage secure?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 29 Nov 2005 23:47:50 +0530
Dr Balwinder Singh Dheeman wrote:
> Proteus wrote:
>
>> I am told by people in charge at the campus where I teach that this login
>> page is secure, that the form login info (username, password) is secure
>> when sent. But the browser page (Firefox, Mandriva Linux) info says the
>> page is not encrypted, not secure. Can someone clarify how such a login
>> page can securely transmit the login info? Link to login page is below:
>> http://www.lsc.edu/Online/VirtualCampusLogin.cfm
>
>
> No, I don't think; you are sending clear text data via _http_ (port 80),
> where as URL's for secure pages send encrypted data via _https_ (http
> via ssl, port 443).
>
> You can verify/confirm it by capturing data on port 80 and, or 443 with
> help of tcpdump(8) and, or ethereal(1).
Oops! I'm sorry, I skipped checking the said page's HTML code. For
sending back user's data it is using _https_ (http via ssl, port 443) so
it will transmit encrypted data and is secure.
-- Dr Balwinder Singh Dheeman Registered Linux User: #229709 CLLO (Chief Linux Learning Officer) Machines: #168573, 170593, 259192 Anu's Linux@HOME Distros: Ubuntu, Fedora, Knoppix More: http://anu.homelinux.net/~bsd/ Visit: http://counter.li.org/
- Next message: Proteus: "where can i telnet or do insecure http form?"
- Previous message: Proteus: "Re: is this webpage secure?"
- Next in thread: Dr Balwinder Singh Dheema: "Re: is this webpage secure?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
