ejrhodes
02-16-2005, 02:20 PM
So a friend of mine is building a website for a company that stores some personal information in a database. Anyhow, they have invested in a Verisign Certificate so that when you access their webpage, it communicates via SSL.
Within the secure directory, they have a page that submits a form to a 2nd page in the directory. On the 2nd page, a query is ran and the data is sent to the browser in a CSV file. Basically, the response header type on the 2nd page was changed to CSV.
The question is, when the CSV file is sent from the server down to the browser, is the file still encrypted via SSL or could a sniffer pick up the contents of the file?
Within the secure directory, they have a page that submits a form to a 2nd page in the directory. On the 2nd page, a query is ran and the data is sent to the browser in a CSV file. Basically, the response header type on the 2nd page was changed to CSV.
The question is, when the CSV file is sent from the server down to the browser, is the file still encrypted via SSL or could a sniffer pick up the contents of the file?