Safety between HTML/JSP Pages

I'm using an HTML form to let users login to my site. They insert their password in plain text (obviously), then when they've clicked the 'submit' button, it gets processed and ends up in the check.jsp page.

By using request.getParameter("password"), I extract the variable and THEN encrypt it to MD5 and continue to varify the inputted data.

My question is; is this safe enough? I compare the database hash with the transformed password hash to determine whether the user is authorised to enter the page, but I'm worried about the transmission between the form and the JSP page.

If it's not safe enough, what should I do to make it safer?

[672 byte] By [Nidhuggura] at [2007-11-27 0:45:14]