[英]Is data secure as long as you send it from/to an HTTPS page? I can still see form data in chrome's network devoloper tools
The form was sent from https://www.numbersgate.com/batchpixel/signUp.php 该表格是从https://www.numbersgate.com/batchpixel/signUp.php发送的
I just want to know if all I have to do to ensure security is send from https to https. 我只想知道我是否需要做些什么来确保安全性从https发送到https。
https secures only the connection from the user to the server. https仅保护从用户到服务器的连接。 Once they are at the server they are no longer protected by https against attacks, so you have to find others ways to protect them there.
一旦他们在服务器上,他们就不再受https的攻击保护,所以你必须找到其他方法来保护他们。 https will also not protect the data from against attacks against the logic of the web application, like CSRF, XSS, clickjacking etc. In short: https is just one part to secure the data, there is much more.
https也不会保护数据免受Web应用程序逻辑的攻击,如CSRF,XSS,clickjacking等。简而言之:https只是保护数据的一部分,还有更多。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.