difference between GET and POST

jannoy

im wondering what is the difference between GET and POST?

is it true that POST does not easily hack?
what is the advantage and disadvantage??

bastien

basic html theory here:

Get passes all variables in the URL (address bar)
- all variables and values are visible
- limit of about 2000 chars
- fine for things that are not very important and that you check on the server side to prevent users from screwing things up

POST

Does not use address bar
- data more hidden but still plain text
- can upload files
- no size limitations

Any and all varaibles passed to the server should be checked for consistancy and for errors that malicious users may try to introduce

superwormy

http://www.w3.org/Protocols/rfc2616/rfc2616-sec9.html

NEITHER IS SECURE, AND NEITHER IS LESS OR MORE HACKABLE THAN THE OTHER.

If you want security, look into SSL.