Sunday, January 13, 2008

Login forms should be on HTTPS urls

This article is interesting - I especially like the part about why login pages should be https urls, not just the form you're submitting the login to...

http://blogs.msdn.com/ie/archive/2005/04/20/tls-and-ssl-in-the-real-world.aspx