Bruce Guenter wrote:
> On Tue, Oct 24, 2000 at 10:25:14AM -0400, Lamar Owen wrote:
> > The point being is that if we offer the protocol to do it, we had better
> > ensure its security, or someone WILL find the hole. Hopefully it will
> > be people who want to help security and not exploit it.
> IMO, anything short of a full SSL wrapped connection is fairly
> pointless. What does it matter if the password is encrypted if
> sensitive query data flows in the clear?
I tend to agree. SSL is a fully worked out means of doing secure
connections. It is portable, it is robust, and it is relatively secure.
--
Lamar Owen
WGCR Internet Radio
1 Peter 4:11