Does it make security sense to hash password on client end

Question

If you were to hash a user\'s password prior to sending it across the line and leaving it in plain-text in memory, would this improve the security of the application?

<

Answer 1

You'd be much better off if you used the Secure Remote Password protocol (SRP). It was designed for this.