re: Would you send a plain text password from your website to the server over a secure connection? VIEW POST


Is it worth to encrypt the data if the the encryprion keys can be read from the client side?


only the encryption keys, not decryption, but there's no point, if https is broken anyone can just inject their own script

code of conduct - report abuse