HTTP Plaintext Password Authentication

low Nessus Network Monitor Plugin ID 3018

Synopsis

The remote host passes information across the network in an insecure manner.

Description

The remote client sent an HTTP auth request in cleartext. A base64-encoded password was detected.

Solution

Use SSL or a stronger authentication mechanism.

Plugin Details

Severity: Low

ID: 3018

Family: Web Clients

Published: 6/17/2005

Updated: 5/18/2018