I think its fairly common to send "plaintext" over ssl and hash and compare to stored hash during auth.
What would you recommend?
I think its fairly common to send "plaintext" over ssl and hash and compare to stored hash during auth.
What would you recommend?