Hi John,
Well... you are not really sending the password in clear text.
Normally sending the password, be it encrypted or not, is thought to be an
vulnerability by itself, because if someone manages to break your encryption
(for example man in the middle as you suggested, or breaking the key, or
...
Well... you are not really sending the password in clear text.
Normally sending the password, be it encrypted or not, is thought to be an
vulnerability by itself, because if someone manages to break your encryption
(for example man in the middle as you suggested, or breaking the key, or
...
[ more ]