Quote:
|
Originally Posted by plutonium83
server/user "talk" (especially with usernames and passwords) must be encrypted.
|
Even if you encrypt the passwords that are stored in the database, the passwords are still passed from the input form in the browser to the script on the server unencrypted in the HTTP request. You cant really encrypt the password on the client computer before sending it to the server. So if you want a truly secure connection you would have to use SSL on your server.
As for the other features you have talked about, may I suggest trying openFIRST?
There is a lot of functionality in that system, and since you have the source, you can customize it to fit your team's needs.
FIRSTers in particular want very strictly delineated guidelines so that they know exactly what parameters under which they're working, except when they don't. - pfreivald [more] 
06-01-2004, 15:21
Similar Threads
Threaded Mode