Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
How secure is it, when you sending username and password with cURL –form or –data option? Compare to the browser form submitting, what’s the difference between them?
For example, how is the following different to a browser form?
curl –from username=fred –form password=secret http://example.com
Curl emulates a browser, so over the network they’re both the same, HTTP being insecure and HTTPS being mostly secure. The browser adds some extra headers that
curlmay not send by default, but it can be made to do so.The problem with sending it using
curlusing that command is more local, if you’re unlucky and someone runsps(or the task manager) at the wrong moment, may see your command line, including the password.