W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2004

Microsoft to Strike IE URL Passwords

From: Dave Kristol <dmk@acm.org>
Date: Thu, 29 Jan 2004 14:37:53 -0500 (EST)
Message-ID: <401960CC.2030201@acm.org>
To: HTTP Working Group <ietf-http-wg@w3.org>




<http://www.internetnews.com/dev-news/article.php/3305741>

If I understand this article correctly, it sounds like MS IE will remove support 
for Basic Authentication.  While we all agree that cleartext passwords are evil, 
this sounds to me like it will create a major compatibility problem at sites 
that use Basic.  And note that it covers Basic over SSL, too, where the 
passwords would *not* be cleartext.

Dave Kristol
Received on Friday, 30 January 2004 05:21:59 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:49:27 GMT