通过https将明文用户名和密码从C#应用程序发送到Wordpress网站是否安全?
我认为是,因为密码将由https加密,中间人不会看到。
这就是当您使用Wordpress logjn表单并输入密码时会发生什么,我是对的吗?
答案 0 :(得分:2)
Some sites encrypt password before sending them over HTTP event when they use HTTPS. There is a js library that helps with that Crypto Js
But in general yes it is safe cause as you said HTTPS will keep the password safe from man in the middle
You can also find an example here (the example was not written by me): https://codepen.io/gabrielizalo/pen/oLzaqx
// INIT
var myString = "https://www.titanesmedellin.com/";
var myPassword = "myPassword";
// PROCESS
var encrypted = CryptoJS.AES.encrypt(myString, myPassword);
var decrypted = CryptoJS.AES.decrypt(encrypted, myPassword);
decrypted.toString(CryptoJS.enc.Utf8);
答案 1 :(得分:1)
只要您拥有有效的安全加密证书(SSL或TLS),我认为您应该没问题。