Updated passwords in the clear 52 from David Orchard on 2008-04-21 (www-tag@w3.org from April 2008)

From: David Orchard <dorchard@bea.com>
Date: Mon, 21 Apr 2008 16:12:23 -0700
To: <www-tag@w3.org>
Message-ID: <BEBB9CBE66B372469E93FFDE3EDC493E01B4E9C3@repbex01.amer.bea.com>

Changes:
Updated abstract.
Changed SHOULD NOT send passwords in the clear to MUST NOT and related
text
Added information on Digest Authentication vulnerabilities and warning
Added SSL/TLS configuration warning.
 
http://www.w3.org/2001/tag/doc/passwordsInTheClear-52
http://www.w3.org/2001/tag/doc/passwordsInTheClear-52-20080421.html
 
Cheers,
Dave

Received on Monday, 21 April 2008 23:13:10 UTC