Y
Hacker News
new
|
ask
|
show
|
jobs
by
jimktrains2
3797 days ago
HTTP Digest also makes HA1 (hash stored on the server) the credential, so if it were leaked, then you could still authenticate as the user.