WebService: Cookie Digest

Owned by Tucker Watson (Unlicensed)
Last updated: Aug 17, 2017
1 min read

The Web Service has three different kind of authentication schemes available: basic, cookie, and cookie-digest.  With both basic and cookie authentications the password is transmitted to the station in clear text without any kind of encryption.  This means that on an insecure network an attacker could potentially steal credentials.

The authentication scheme should always be set to Cookie Digest.  

To set the Authentication to Cookie Digest

  1. Navigate to the Station's Services > WebService property sheet
  2. Set the "Authentication Scheme" to "Cookie Digest"