Re: ssl forms
by Marius Zydyk <pod(at)null.net>
|
| Date: |
Thu, 12 Jul 2001 23:44:24 -0600 |
| To: |
Lyle <Lyle(at)lcrcomputer.com>,
"Hwg-Servers List (E-mail)" <hwg-servers(at)hwg.org> |
| In-Reply-To: |
hwg |
| |
todo: View
Thread,
Original
|
|
This is exacly what happens. The ACTION attribute of the form is what the
form gets posted to, so if it's secure, so is the form data. Otherwise
where would the form be submitted to? MZ
At 09:28 07/12/2001 -0500, Lyle wrote:
>I asked a question on a different forum and thought someone here may know
>the answer already.
>
>I saw some websites asking for credit card info via a non-secure form page,
>but the submit called a secure form. Now, my understanding was that hitting
>submit on the browser from the non-secure form sent the info to the
>webserver to then pass to the secure form, via http and not https. It was
>my understanding that the form info was sent prior to calling up the secure
>form and is passed to the secure via the submit function.
>
>Some of those on that other forum stated that the info would be secured
>because you are submitting to a secure page(https). I haven't had time to
>verify this via a sniffer, but was wondering if anyone here has tested this
>to know for sure.
>
>Lyle
--
Marius Zydyk -- pod(at)null.net -- http://www.domainofdarkness.com/
HWG: hwg-servers mailing list archives,
maintained by Webmasters @ IWA