i've never actually asked a question here...
okay, i've written login/session web apps, i've stored md5 hashes of passwords, i've got sessions on "idle timers", i've even designed sites that only allowed three bad login attempts before freezing the account... but i DON'T have secure transmission of login material (passwords are the big concern obviously).
I would like to be able to design a login process that takes advantage of ssl or similar, however i must admit i am stumped. i assume there are folks here who have acheived encrypted transmission of login material. any pointers?
-frymaster
