Latest IE patch breaking non username:password at encoded websites?

• Previous message (by thread): Latest IE patch breaking non username:password at encoded websites?
• Next message (by thread): Latest IE patch breaking non username:password at encoded websites?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Yes they broke basic auth in a URL.
>
> I am uncertain as to why it was necessary to remove this functionality.
>
> Bryan

	Apparently, there were ways to use this to make one URL look like the URL
of another site. According to Microsoft, it isn't just
'www.microsoft.com at 63.49.11.12/foo', but there were other problems involving
being able to completely fool even technically savvy people (that is,
nothing on the screen would reveal the real source of the web page you were
looking at and every visible indicator was spoofable).

	DS

• Previous message (by thread): Latest IE patch breaking non username:password at encoded websites?
• Next message (by thread): Latest IE patch breaking non username:password at encoded websites?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]