tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Roland <rol...@netquant.com.br>
Subject Implementing JDBC realm with encryption
Date Thu, 27 Dec 2001 14:52:08 GMT
Hello,
I want to implement my own JDBC realm with browser side-password 
encryption. The idea is to hash the password together with the sessionId 
and a random variable using SHA-1 on the browser side with Javascript. The 
hash is then send to the server. This prevents hackers from retrieving the 
password in plain text from the internet. Has anything like this been 
implemented already? How do I start to implement it myself?

Thanks, Roland


--
To unsubscribe, e-mail:   <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-dev-help@jakarta.apache.org>


Mime
View raw message