本文介绍了从HTTP到HTTPS的POST是否安全?的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
我有一个带有表单的HTTP页面。如果我将操作设置为HTTPS页面,请求是否安全?浏览器在将数据发送到网络之前是否会处理所有数据?或者我应该在整个网站上使用HTTPS吗?
I have a HTTP page with a form. If I set the action to a HTTPS page, is the request secure? Does the browser process all the data before it sends it to the net? Or should I use HTTPS for my entire site?
推荐答案没有。 Troy Hunt确定了一个简单的 man-中间攻击,表明从HTTP发布到HTTPS绝不是安全的。随着免费WiFi的普及,这种攻击将非常简单。
No. Troy Hunt identifies a simple man-in-the-middle attack that shows that posting from HTTP to HTTPS is by no means secure. With the proliferation of free WiFi this attack would be very simple to execute.
www.troyhunt/2013/05/your-login-form-posts-to-https-but -you.html
更多推荐
从HTTP到HTTPS的POST是否安全?
发布评论