Tom Samplonius writes:
> Except for the fact that crypt provides little if no security increase.
> Even though only a crypted password is sent over the wire, that crypted
> password can still be captured off the wire and replayed to get access.
Only if you happen to get the same salt from the server every time, which
is rather unlikely.
--
Peter Eisentraut peter_e@gmx.net http://yi.org/peter-e/