从HTTP到HTTPS的POST是否安全？

编程入门行业动态更新时间:2024-10-28 00:25:13

本文介绍了从HTTP到HTTPS的POST是否安全？的处理方法，对大家解决问题具有一定的参考价值，需要的朋友们下面随着小编来一起学习吧！问题描述

我有一个带有表单的HTTP页面。如果我将操作设置为HTTPS页面，请求是否安全？浏览器在将数据发送到网络之前是否会处理所有数据？或者我应该在整个网站上使用HTTPS吗？

I have a HTTP page with a form. If I set the action to a HTTPS page, is the request secure? Does the browser process all the data before it sends it to the net? Or should I use HTTPS for my entire site?

推荐答案

没有。 Troy Hunt确定了一个简单的 man-中间攻击，表明从HTTP发布到HTTPS绝不是安全的。随着免费WiFi的普及，这种攻击将非常简单。

No. Troy Hunt identifies a simple man-in-the-middle attack that shows that posting from HTTP to HTTPS is by no means secure. With the proliferation of free WiFi this attack would be very simple to execute.