Printable View
Hi
I am working on a software that uses SOAP protocol. (Using WSDL generated classes) One thing came to mind. If the server provide a method such as SetPassword(...), is there going to be a security concern? If you do not encrypt the parameter of this method, are eavesdroppers going to be able to see the password being set?
Or, does it depend on the server's implementation?
thanks
Yes, Use SSL.Quote:
Originally Posted by xusword
Regards
Doron Moraz
thanks for your advice
As you might have detected I am an absolute beginner at this. How do I know when I calling these SOAP method that SSL is involved? Or is asking the people who maintains the server the only way to find out if they use SSL?
You won't get it if you didn't pay for it 8)Quote:
Originally Posted by xusword
Hmm
I wonder if I am using SSL already. What I know is when I try to connect to their server, it requires a "security token". However, I brief browsed through the server but never see the word "SSL" mentioned. Also, there is no mention in the WSDL about "SSL". I am really not sure. If SSL is involved, should it be on the WSDL?
thanks
To determine whether SSL is configured correctly, try using an https URL such as the following:Quote:
Originally Posted by xusword
https://myserver.com
Regards
Doron Moraz