diff options
author | Christoph Burschka | 2014-01-15 23:52:05 +0100 |
---|---|---|
committer | Christoph Burschka | 2014-01-16 00:00:59 +0100 |
commit | 7d9778c6024bf7641f2868026779e42017db7c48 (patch) | |
tree | 09574a258d80400ddf5c8295dd35333d9765ff2c /plugins/session | |
parent | Adding a README.md to session/ (diff) | |
download | ejabberd-auth-php-7d9778c6024bf7641f2868026779e42017db7c48.tar.gz |
Formatting of README headings.
Diffstat (limited to 'plugins/session')
-rw-r--r-- | plugins/session/README.md | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/plugins/session/README.md b/plugins/session/README.md index cc246d9..9c931cb 100644 --- a/plugins/session/README.md +++ b/plugins/session/README.md @@ -23,8 +23,9 @@ The control flow is like this: If it exists and hasn't expired yet, it confirms the authentication and the user is logged in without a password. + Security Considerations -======================= +----------------------- The one-time key is transmitted in clear, and can be intercepted if the connection is not encrypted. But the same channel is already used to transmit the password |