Revision as of 15:02, 27 August 2020 edit 2a02:a442:7e15:1:51fb:b65d:89ee:59ec (talk) →Advantages ← Previous edit		Revision as of 15:03, 27 August 2020 edit undo XenonNSMB (talk \| contribs) Extended confirmed users, Rollbackers 3,485 edits m Reverted edits by 2A02:A442:7E15:1:51FB:B65D:89EE:59EC (talk) (HG) (3.4.10) Tag: Rollback Next edit →
Line 94: * Server nonce is allowed to contain timestamps. Therefore, the server may inspect nonce attributes submitted by clients, to prevent [[replay attack]]s * Server is also allowed to maintain a list of recently issued or used server nonce values to prevent reuse * It prevents [[Phishing]] because the plain password is never sent to any server, be it the correct server or not. (Public key systems rely on the user being able to verify that the URL is correct.) ~~yigtihhjhjkyjhihjikl,, ;;;;h;j,h;n.;h. lko~~ === Disadvantages ===

Digest access authentication: Difference between revisions