When a field is designated as a password field, the *s that replace whatever's typed into the field is purely client side. When the form is submitted, whether the field is a text or password, it's still insecure if the page isn't a secure page (SSL).
In other words: it's a purely cosmetic thing...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.