Lesson Plan Title: Insecure Login

Concept / Topic To Teach:

Sensitive data should never sent in plaintext! Often applications switch to a secure connection after the authorization. An attacker could just sniff the login and use the gathered information to break into an account. A good webapplication always takes care of encrypting sensitive data.

General Goal(s):

See how easy it is to sniff a password in plaintext.
Understand the advantages of encrypting the login data!