Login page should be served using HTTPS\SSL. Note this is the serving of the login page not just the post back once user details are entered. Otherwise it is possible for someone to tamper with the page contents and you may find your users posting their details to a different site and stolen. Many people […]