Hello, I want to implement my own JDBC realm with browser side-password encryption. The idea is to hash the password together with the sessionId and a random variable using SHA-1 on the browser side with Javascript. The hash is then send to the server. This prevents hackers from retrieving the password in plain text from the internet. Has anything like this been implemented already? How do I start to implement it myself?
Thanks, Roland -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
