TECHNOLOGIES
FORUMS
JOBS
BOOKS
EVENTS
INTERVIEWS
Live
MORE
LEARN
Training
CAREER
MEMBERS
VIDEOS
NEWS
BLOGS
Sign Up
Login
No unread comment.
View All Comments
No unread message.
View All Messages
No unread notification.
View All Notifications
Answers
Post
An Article
A Blog
A News
A Video
An EBook
An Interview Question
Ask Question
Forums
Monthly Leaders
Forum guidelines
Venkateswarlu Parvatam
NA
6
8.1k
Password is in plain text in ASP.Net Page submit.
Jun 23 2018 5:49 AM
Hello,
In my web application, we are creating users using salt and hash technique with SHA256. we are able to login with the users created with the hash and Salt technique. All APS.Net controls are server side controls.
We approached a security audit team for any security issues.
When our security auditor check the application using
Burp Suite,
they say that password is still in clear text. What they are saying is the encrypt the password before transmitting the data on to the server. The security testing on an http. we have a https also but they wanted to do the testing on http only. Would you please kindly let us know what is the approach that we need to follow?
Thanks and Kind Regards,
Venkat.
Reply
Answers (
1
)
How to generate hindi pdf
Code Not Working when Switch To AJAX From Formaction