W3C home > Mailing lists > Public > www-tag@w3.org > April 2008

Updated passwords in the clear 52

From: David Orchard <dorchard@bea.com>
Date: Mon, 21 Apr 2008 16:12:23 -0700
Message-ID: <BEBB9CBE66B372469E93FFDE3EDC493E01B4E9C3@repbex01.amer.bea.com>
To: <www-tag@w3.org>
Changes:
Updated abstract.
Changed SHOULD NOT send passwords in the clear to MUST NOT and related
text
Added information on Digest Authentication vulnerabilities and warning
Added SSL/TLS configuration warning.
 
http://www.w3.org/2001/tag/doc/passwordsInTheClear-52
http://www.w3.org/2001/tag/doc/passwordsInTheClear-52-20080421.html
 
Cheers,
Dave
 
Received on Monday, 21 April 2008 23:13:10 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 26 April 2012 12:47:56 GMT