macromedia flash flash remoting: So I want to have users login using flash, which will be sent to a ColdFusion
login routine - thing is, I don't want to send user/password info in the clear.
How do I get flash remoting to SSH or hash or the like?

FlashPlayer doesn't support SSH, so you can't use that. Basically, you'd have
to come up with your own hash algorithm for encrypting and passing the
information, but since it all happens in AS, and thus is accessible to
decompilers, there isn't much point in that either.

The best you can do is use SSL for your secure remoting.

I've mentioned the need for high-grade encryption to MM several times
(including some of the developers on the security team), but have yet to hear
anything back that was positive...the best was "maybe code signing in Flash 9".

[quoted text, click to view]
an md5 function for flash.
Encrypt the username and password using the the md5 and send that to
your server script which probably has md5 built in to process it.
Its not a real solution to this problem, more of a backdoor.
And if someone still wants to crack your password they will be able to.
Decryting md5 is hard but not impossible.
But still .. its better than nothing.

link: http://www.sephiroth.it/file_detail.php?id=69

[quoted text, click to view]