hi,
simple question..
when an ejb is protected a user need to provide a 'username' and 'password' due to access it. Now, i put this variable inside the InitialContext on the client side, when it sends this to the J2EE server it use a stub implementation over RMI, is this communication secure? if not, how those information can be read from a malicious user? Is possible send this data throw SSL? if not, what's the most secure way to protected information in ejb client/server communication?
Thank you very much.