[thelist] Security of Post vs Get
Lightning
oktellme at earthlink.net
Tue Aug 24 15:08:37 CDT 2004
true POST is more secure than GET.
What you pass via GET is visible as astring atached to the url.
There is ANOTHER method - but I can't recall the details... perhaps someone
else here does? Using system parameters.
That is, the info being passed is given temporary storage, and what gets
passed is an address that points to it.
----- Original Message -----
From: "Hershel Robinson" <hershelr at netvision.net.il>
To: "Thelist (E-mail)" <thelist at lists.evolt.org>
Sent: Tuesday, August 24, 2004 1:26 PM
Subject: [thelist] Security of Post vs Get
> I have a page which makes a call to the server and loads the resultant
page
> into a hidden iframe, then operating on the data loaded there.
>
> Are there grounds to suggest that using a form and method="POST" would be
> more secure than a GET or just building a URL with JavaScript and
submitting
> that?
>
> The site is a secure site as it is--we just want to maximize security
> whenever possible.
>
> Thank you,
> Hershel
>
> --
>
> News! - Evolt.org conference for web professionals.
> 17-19 September 2004 in Toronto, Canada.
> Details at http://TOevolt.org
>
> * * Please support the community that supports you. * *
> http://evolt.org/help_support_evolt/
>
> For unsubscribe and other options, including the Tip Harvester
> and archives of thelist go to: http://lists.evolt.org
> Workers of the Web, evolt !
More information about the thelist
mailing list