« previous next »
Pages: [1]

Author Topic: is it secure to send username & password thru a link in php script?  (Read 99 times)

0 Members and 1 Guest are viewing this topic.

Offline markthienTopic starter

  • Irregular
    • View Profile
is it secure to send username & password thru a link in php script?
« on: July 05, 2009, 12:54:46 AM »
Hi guys,

    I am thinking of using Clickatell api to send SMS like below:

http://www.clickatell.com/developers/php.php

However, their api accept username and password in the url. hence, is it secure to send like that? I mean is it vulnerable to hacker?

regards,
Mark
Logged

Offline Prismatic

  • Devotee
  • Gender: Male
  • Eschew obfuscation, espouse elucidation.
    • View Profile
Re: is it secure to send username & password thru a link in php script?
« Reply #1 on: July 05, 2009, 02:32:42 AM »
Yes it is vulnerable. Sending a username and password in plain text outside of SSL is always open to eavesdropping.

Edit - It seems Clickatell supports HTTPS, use it.
« Last Edit: July 05, 2009, 02:35:37 AM by Prismatic »
Logged

PHP Freaks Forums

« on: »

Tired of these ads? Purchase a supporter subscription to get rid of them.
Pages: [1]
« previous next »