HTML5 teaser

[Mark Wieder]

On 03/04/2016 06:38 PM, Lyn Teyla wrote:

> Using a HTTPS connection ensures that the PDF file is transmitted securely.

Uh, sorry, no.
HTTPS by itself will (mostly) guarantee that you are connected to the 
server you think you're connecting to. There's no encryption unless you 
enforce it yourself. The connection itself isn't in cleartext after the 
initial handshake, so someone listening in on the network traffic won't 
be able to grab and view the pdf, but unless you're requiring a login 
and encrypting the file, there's nothing to stop anyone from going to 
the https url and picking up a copy of the file.

-- 
  Mark Wieder
  ahsoftware at gmail.com