Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
In PHP, when making a login page, if your page is HTTPS, is it common for the username/password to appear in the request post information?
Shouldn’t the password be encrypted? What am I missing?
Here is an example of what I’m talking about: this website is called souq.com where you can see in Firebug monitoring it’s showing the username and password.
It is encrypted when sent over the internet. What you see here is what your browser sent to the server before it became encrypted.
Therefor what you see in Firebug has nothing to do with how it looks like when being sent through the web.