http://www.perlmonks.org?node_id=195717

glickjd has asked for the wisdom of the Perl Monks concerning the following question:

I'm trying to decide on a session management technique. There are so many PMs out there that I don't know what would be best to use. Once users are logged in, they should be able to browse the site without re-entering their username/password (unless inactive for a period of time). I know that normally you wouldn't want to pass the username/password between the client and server as plain text, but this site will be running SSL. Does this mean I shouldn't worry about passing the username/password between the browser and server? I don't really need to track anything other than the username/password. This isn't a shopping cart or anything like that. It is however important that it is very secure. Any suggestions would be greatly appreciated. Thanks, Jeremy