[Webkit-unassigned] [Bug 261738] HTTP Basic Auth in URL not used
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Sep 21 03:03:15 PDT 2023
https://bugs.webkit.org/show_bug.cgi?id=261738
Anne van Kesteren <annevk at annevk.nl> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |INVALID
Status|NEW |RESOLVED
--- Comment #2 from Anne van Kesteren <annevk at annevk.nl> ---
Yeah, this would make it very easy to perform dictionary attacks or phish the end user in some way.
Various groups, including the HTTP WG, have been deprecating this format for HTTP URLs.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230921/534e26cb/attachment.htm>
More information about the webkit-unassigned
mailing list