form submit in a non secure page

I would like someone to answer this and if possible provide some reference links to back it up (if possible). Need to prove to someone its not secure.

If I have a form with the post method on a non-secure page, but the action attr开发者_运维知识库ibute is pointing to a secure URL, is the submitted form secure?

Yes. The data is submitted to a secure URI, so is it is encrypted and secure.

However … the user will have no indication that this is going to happen before they submit the form so you should provide the form over SSL too.

Short answer is : no secure if ssl(https) is not implemented. Please have a look at my question, and the answers from security guys to that here

Hope this helps.