Hide my URL?

deep

Hello,

Lets say my url is http://mysite.com?page=login&password=abc

(I wouldnt program like this its just so that you understand me 🙂)

Is there a way to hide the password or crypt it somehow not showing it to the user?

Thx!

MrPixel

You could use an MD5, or SHA1 hash, but you can't get it back at the other end - only compare results. And it's not really any more secure than just sending it in plain text.

You could also use base-64 encoding, which is reversible, but again, totally insecure.

cahva

One can use MD5 but the trick is to add some modifiers and custom crypting in to it. For example reversing the password, add some custom salt.. Basicly do the most bizarre things you want to do to make it custom so its much more tougher to crack 🙂 And IMHO, passwords shouldnt be reversible. Hash check is all you need.

olaf

I think you have to check apache mod_rewrite (if you server is an apache)

or just use post in place of get in your login form