Topic: Acts_as_authenticated security or other rails solutions
I am a total Rails noob. I have implemented acts_as_authenticated on a website I am developing and I was wondering about the security of it. Specifically I was wondering if passwords are sent to the server in plain text or if there is another method it uses.
Do I need to use ssl? Is there some better way to do authentication in Rails that doesn't allow someone to sniff the password when it is sent, or is acts_as_authenticated already taking care of it? Thanks.