Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Re: Database Authentication on Webserver 3.0?

Re: Database Authentication on Webserver 3.0?

From: Robert Cordingley <cord_at_ragesoft.NOSPAMMERZ.com>
Date: 1997/10/03
Message-ID: <34355072.1044713@news>#1/1 







On Thu, 02 Oct 1997 14:24:03 GMT, tkyte_at_us.oracle.com (Thomas Kyte) wrote:



>The way to get the passwords (and everything else in fact) sent in a secure

>fashion is to use SSL over HTTP.  If you use https instead of just http, the

>entire conversation between the browser and the webserver will be encrypted,

>including the HTTP headers where the username/password is sent in a base64

>encoded string.




But Tom, SSL uses a great deal more cpu power than plain ol' http and it's
kinda overkill don't you think?  There oughta be a way to throw oracle
usernames and passwords through digest encryption.



Robert
Received on Fri Oct 03 1997 - 00:00:00 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US