httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ben Laurie <...@gonzo.ben.algroup.co.uk>
Subject Re: Security hole in mod_digest.c?
Date Tue, 27 Aug 1996 13:47:44 GMT
Alexei Kosut wrote:
> 
> On Mon, 26 Aug 1996, Ben Laurie wrote:
> 
> > Oh yeah, I knew I forgot something. Netscape 3 appears to do digest auth.
> 
> Not my version of Netscape 3.0 (the US-only version of Netscape 3.0 for
> the Macintosh). It does what it's always done - pops up the "Please enter
> username for..." dialog box, with the right realm, but it doesn't actually
> support digest auth. It's just too stupid to read the first word of the
> WWW-Authenticate header and see that it's Digest, not Basic.

Ah! Typical. Is there a browser which does do it?

BTW, I notice that Netscape don't appear to participate in http-wg - or am I
missing something?

Cheers,

Ben.

> 
> -- Alexei Kosut <akosut@organic.com>            The Apache HTTP Server 
>    http://www.nueva.pvt.k12.ca.us/~akosut/      http://www.apache.org/
> 

-- 
Ben Laurie                  Phone: +44 (181) 994 6435
Freelance Consultant and    Fax:   +44 (181) 994 6472
Technical Director          Email: ben@algroup.co.uk
A.L. Digital Ltd,           URL: http://www.algroup.co.uk
London, England.            Apache Group member (http://www.apache.org)

Mime
View raw message