WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Should login pages be protected by SSL?

From: Michael Silk <michaelslists () gmail com>
Date: Mon, 27 Jun 2005 10:15:46 +1000
On 6/27/05, Yanglei <lenyang () 263 net> wrote:

I am gree, SSL only encrypt  http traffic data, but can not prevent attacking to web
application  such as SQL inject, Cookie poisoning etc.Of couse, now we can use web 
application firewall to protect website.


Or just stop making programming errors :)

-- Michael
Previous By Date Next
Previous By Thread Next

Current thread: