ernest1a — 2010-07-02T09:24:12-04:00 — #1
Name<input type="name" id="name" />
Password<input type="password" id="password" />
//then it sends those data with ajax to registration.php
The problem is that is probably not secure way. Is any way to encrypt value of input? For example something like this
felgall — 2010-07-02T15:50:35-04:00 — #2
The most secure way to send it if you don't have an SSL certificate is as plain text.
ernest1a — 2010-07-02T13:26:21-04:00 — #3
Is that even any huge security risk if I send password with ajax without encrypt before I validate it?
I see that also Facebook doesn't do it. As you can try, Facebook sends to 2nd step of registration the value of password with ajax (POST reg_passwd__) without encrypt it.
chris_upjohn — 2010-07-02T10:30:22-04:00 — #4