1. All data between the client and the server is encrypted. 2. This authentication method is supported by all the commonly used browsers. 3. An MD5 digest of the password is sent from the client to the server. 4. A web application using this method of authentication is not guaranteed to work on all application servers.
The answer given is 3,4. But according to HFSJ, DIGEST does use a less commonly used encryption mechanism. Then why is option 1 wrong?
please refer Marcus Green notes to get rid of your confusion.
best regards, omi [ July 15, 2008: Message edited by: omi sharma ]
Most of the programming problems can't be solved because you don't know what the exact problem is.
Defining your problem correctly leads you to the right solution.
Hi, Using digest authentication, your password is never sent across the network in the clear, but is always transmitted as an MD5 digest of the user's password. In this way, the password cannot be determined by sniffing network traffic.
Grow your own food... or this tiny ad:
a bit of art, as a gift, the permaculture playing cards