Welcome to the staging ground for new communities! Each proposal has a description in the "Descriptions" category and a body of questions and answers in "Incubator Q&A". You can ask questions (and get answers, we hope!) right away, and start new proposals.
Are you here to participate in a specific proposal? Click on the proposal tag (with the dark outline) to see only posts about that proposal and not all of the others that are in progress. Tags are at the bottom of each post.
Post History
I don't know the full answer, but according to the official docs (linked in question): No. However, this does not lead to a significant security advantage over basic authentication. and On...
Answer
#3: Post edited
by
matthewsnyder
·
2023-06-22T06:31:44Z (over 1 year ago)
I don't know the full answer, but the link says:- >However, this does **not** lead to a significant security advantage over basic authentication.
- and
- >On the other hand, the password storage on the server is much less secure with digest authentication than with basic authentication. Therefore, using basic auth and encrypting the whole connection using `mod_ssl` is a much better alternative.
- ------
- (originally posted as comment, but added as answer on asker's request)
- I don't know the full answer, but according to the official docs (linked in question): No.
- >However, this does **not** lead to a significant security advantage over basic authentication.
- and
- >On the other hand, the password storage on the server is much less secure with digest authentication than with basic authentication. Therefore, using basic auth and encrypting the whole connection using `mod_ssl` is a much better alternative.
- ------
- (originally posted as comment, but added as answer on asker's request)
#2: Post edited
by
matthewsnyder
·
2023-06-21T23:35:45Z (over 1 year ago)
- I don't know the full answer, but the link says:
- >However, this does **not** lead to a significant security advantage over basic authentication.
- and
- >On the other hand, the password storage on the server is much less secure with digest authentication than with basic authentication. Therefore, using basic auth and encrypting the whole connection using `mod_ssl` is a much better alternative.
- (originally posted as comment, but added as answer on asker's request)
- I don't know the full answer, but the link says:
- >However, this does **not** lead to a significant security advantage over basic authentication.
- and
- >On the other hand, the password storage on the server is much less secure with digest authentication than with basic authentication. Therefore, using basic auth and encrypting the whole connection using `mod_ssl` is a much better alternative.
- ------
- (originally posted as comment, but added as answer on asker's request)
#1: Initial revision
by
matthewsnyder
·
2023-06-21T23:35:36Z (over 1 year ago)
I don't know the full answer, but the link says: >However, this does **not** lead to a significant security advantage over basic authentication. and >On the other hand, the password storage on the server is much less secure with digest authentication than with basic authentication. Therefore, using basic auth and encrypting the whole connection using `mod_ssl` is a much better alternative. (originally posted as comment, but added as answer on asker's request)