I am using username and password. The password field is of type password. But when I do debugging i can see the password as typed in text. Is there any way to hide it. Any wrapper for this.

u simple use password field for this but if it show problem can u send me code

Member Avatar for langsor

Right,

I see your concern here. Since you can grab the plain text value of the password input field using javascript or php, etc. Likewise the password is sent in plain text in the form POST method for anyone doing packet sniffing of your server...for that you need https:// or secure socket layer to protect.

As far as encrypting the password ... I'm afraid that would do no good since if someone has access to your pages via javascript they could bypass any encryption module used with javascript. Likewise they could decipher your encryption module (since it would be in plain javascript format) if they wanted to, anyway.

Luckily most web pages do not allow people to insert javascript into the page, and simply using secure socket layer will deter most would be crackers, unless your password protected data is very important and valuable, then I would hire a specialist in security and encryption to do that part of the site and not rely on limited knowledge to protect it.

In other words -- don't worry about it.

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.