Related
Unreal Dragon I'm developing an iPhone App that connects to an https:// link to authenticate the user. From what I understand, all traffic to a server with a 256-bit private key is secure and cannot be captured, so there is no need to encrypt the data again, a
John I'm creating a secure web-based API that uses HTTPS; however, if I allow the user to configure it with a query string (including sending a password), will this also be secure, or should I force it to be done via POST ? dr evil Yes. But using GET for sensi
wind blows I try to configure my server with Traefik using a Docker container. I configured Traefik to work and I got the dashboard page. The problem is that I want to have my own GitLab server. I pulled the GitLab docker image and created a docker-compose fil
John I'm creating a secure web-based API that uses HTTPS; however, if I allow the user to configure it using a query string (including sending a password), will this also be secure, or should I force it to be done via POST ? dr evil Yes. But using GET for sens
John I'm creating a secure web-based API that uses HTTPS; however, if I allow the user to configure it using a query string (including sending a password), will this also be secure, or should I force it to be done via POST ? dr evil yes. But using GET for sens
rainmaker I am sending a POST request to the URL https://username:
[email protected] in a script . I know that HTTPS encrypts the credentials so they shouldn't be visible on the web. But what about server logs? Are there any other disadvantages to using this
Jared I came across a healthcare provider website that serves its web pages via aspx. The provider has a new customer form in the same aspx page. I contacted the vendor who built the website and asked why they didn't use https. They assured me that they are us
kabeth wahra If I'm being silly here, ask, but how is HTTPS more secure than HTTP? I see there are several ways HTTPS works. The server sends an encryption key to the client, the client encrypts the data with that key, and sends it back to the server. The serv
rainmaker I am sending a POST request to the URL https://username:
[email protected] in a script . I know that HTTPS encrypts the credentials so they shouldn't be visible on the web. But what about server logs? Are there any other disadvantages to using this
Jared I came across a healthcare provider website that serves its web pages via aspx. The provider has a new customer form in the same aspx page. I contacted the vendor who built the website and asked why they didn't use https. They assured me that they are us
dude I am trying to understand the difference between https and http. From what I've read so far, https is http with encryption. So in the case of the user submitting the password form, in the case of http the password will be sent over the network in a text b
good to eat I have followed this guide to secure the ActiveMQ 5.16.2 web console. I did the following configuration in mine jetty.xml: By default, authentication is set to true, so I left it like this: <property name="authenticate" value="true" />
I generated
rainmaker I am sending a POST request to the URL https://username:
[email protected] in a script . I know that HTTPS encrypts the credentials so they shouldn't be visible on the web. But what about server logs? Are there any other disadvantages to using this
Thim Anneessens I know a similar question has been asked in 2016, but I don't think the answer is enough: Secure Download Links (HTTPS) for Ubuntu Desktop There should be a clear way to get ubuntu safely instead of downloading it from http sources by default n
kabeth wahra If I'm being silly here, ask, but how is HTTPS more secure than HTTP? I see there are several ways HTTPS works. The server sends an encryption key to the client, the client encrypts the data with that key, and sends it back to the server. The serv
Rohit Bohara I want to run my application in a kubernetes cluster over https and expose it outside the cluster via https. I created podand exposed the port 443. After that, I created a ClusterIPservice that connects to a pod on port 443and exposes the port 443
deep Do querystring parameters get encrypted in HTTPS when sent with the request? Joe Ratzer Yes. The query string is also encrypted using SSL. However, as this article shows, putting sensitive information in the URL is not a good idea. E.g: URLs are stored in
public knowledge I'm having an issue with Google's reCaptcha not showing up on my https site and was wondering if anyone else here has/is having the same issue and found a fix. In my test environment (localhost) it looks fine and is able to send and receive fo
John I came across a deleted problem by Maria saz while looking for a solution . Fortunately, I was able to see that it was cached by Google . Since I had the exact same problem, I borrowed the original text: """I'm using an embedded embed to build a website w
Merlin -they- I want to deploy a Meteor app to Heroku and make it only accessible via HTTPS. Ideally, I'd like to do this as cheaply as possible. Merlin -they- Create a certificate Run the following command to get certbot-auto. certbot-auto should work on most
Randy Minder For example, let's say I have an Azure web application called MyApp and hosted on Azure as MyApp.azurewebsites.net. As far as I understand, I don't need to do anything to secure the URL with SSL, as this is done by default with a single certificat
Kenny So I try to log in to https site using Goutte and I get the following error: cURL error 60: SSL certificate problem: unable to get local issuer certificate 500 Internal Server Error - RequestException 1 linked Exception: RingException Here is the code us
Peter Mannick I have a secure web API in the AWS cloud and I'm trying to figure out the best way to put it behind a load balancer without compromising security. All communications are currently encrypted using conventional end-to-end encryption. The API server
SRCM My application uses REST calls to get data from server. To secure server calls, I googled and found that OAuth is the best way to secure REST web services. But it also says that OAuth should be used with HTTPS. Why do we need to implement OAuth if we use
Rohit Bohara I want to run my application in a kubernetes cluster over https and expose it outside the cluster via https. I created podand exposed the port 443. After that, I created a ClusterIPservice that connects to a pod on port 443and exposes the port 443
Uzeda I have the following problem with my HTTPS. My client navigates to the checkout page but he doesn't see anything. The Checkout website is rendered using the HTTP protocol, but most of the content is dynamically loaded over SSL (such as the js files used
Mostafizur Rahman Mafi , MD I am trying to get https url from tomcat server in the following way . <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="/root/.keystore" key
deep Do querystring parameters get encrypted in HTTPS when sent with the request? Joe Ratzer Yes. The query string is also encrypted using SSL. However, as this article shows, putting sensitive information in the URL is not a good idea. E.g: URLs are stored in
public knowledge I'm having an issue with Google's reCaptcha not showing up on my https site and was wondering if anyone else here has/is having the same issue and found a fix. In my test environment (localhost) it looks fine and is able to send and receive fo