Hosting Provided By

Re: When GET = POST?

From: Jonas Anden <jonas.anden(at)aptilo.com>
Date: Sun Nov 10 2002 - 10:25:34 EST

> There are two reasons to consider using POST vs GET methods that come to

Actually, I consider the biggest reason for using POST instead of GET is that since GET requests are part of the URL, they are generally logged. Consider the case where you pass sensitive data such as credit card numbers through a GET request. Doesn't matter how well you encrypt your database or your session, the credit card numbers still appear in clear text in the web server logs.

// J Received on Sun Nov 10 10:53:07 2002

This message: [ Message body ]
Next message: Adrian Wiesmann: "Re: When GET = POST?"
Previous message: Alexander: "Re: Securing OWA on public computers."
In reply to Alonso Robles: "Re: When GET = POST?"
Next in thread: Vincent Janelle: "Re: When GET = POST?"
Reply: Vincent Janelle: "Re: When GET = POST?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:44 EDT