North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical RE: Latest IE patch breaking non username:[email protected] websites?
> Yes they broke basic auth in a URL. > > I am uncertain as to why it was necessary to remove this functionality. > > Bryan Apparently, there were ways to use this to make one URL look like the URL of another site. According to Microsoft, it isn't just '[email protected]/foo', but there were other problems involving being able to completely fool even technically savvy people (that is, nothing on the screen would reveal the real source of the web page you were looking at and every visible indicator was spoofable). DS
|