Reputation: 23
Is it secure to send username and password in plaintext from C# to Wordpress site over https
Is it secure to send username and password in plaintext from a C# app to Wordpress site over https?
I figure it is, since the password will be encrypted by https and will not be visible to middlemen.
Thats what happens when you use the Wordpress logjn form and type your password, am I right?
Upvotes: 1
Views: 214
Answers (2)
Reputation: 2126
Some sites encrypt password before sending them over HTTP event when they use HTTPS. There is a js library that helps with that Crypto Js
But in general yes it is safe cause as you said HTTPS will keep the password safe from man in the middle
You can also find an example here (the example was not written by me): https://codepen.io/gabrielizalo/pen/oLzaqx
// INIT
var myString = "https://www.titanesmedellin.com/";
var myPassword = "myPassword";
// PROCESS
var encrypted = CryptoJS.AES.encrypt(myString, myPassword);
var decrypted = CryptoJS.AES.decrypt(encrypted, myPassword);
decrypted.toString(CryptoJS.enc.Utf8);
Upvotes: 2
Reputation: 302
As long as you have a valid security encryption certificate (SSL or TLS) you should be fine I think.
Upvotes: 1
Related Questions
- How to encrypt username/password for session
- passing username and password to the server in a secure way
- POST asp.net form username and password to an external HTTPS login
- Send sensitive data from my website to my C# application
- Is passing username/password in http string safe for this API?
- how to Post encrypted data from http page to https page?
- How to send username password to website from windows application
- Does ASP .NET c# HttpWebRequest support HTTPS Authentication via username:[email protected]?
- Can a username and password be sent safely over HTTPS via URL parameters?
- Is it secure to pass login credentials as plain text in an HTTPS URL?