[1120] in WWW Security List Archive
Re: FTP Security
daemon@ATHENA.MIT.EDU (John Stewart)
Fri Nov 3 21:33:48 1995
To: Howard Melman <melman@osf.org>
cc: John Stewart <jns@cisco.com>, om@pc.isl.goldstar.co.kr,
www-security@ns2.rutgers.edu
In-reply-to: Your message of "Fri, 03 Nov 1995 18:09:45 EST."
<9511032309.AA00680@absolut.osf.org.osf.org>
Date: Fri, 03 Nov 1995 15:31:13 -0800
From: John Stewart <jns@cisco.com>
Errors-To: owner-www-security@ns2.rutgers.edu
->
->
-> On Fri Nov 3, 1995, John Stewart wrote:
->
-> > Netscape doesn't have this restriction. You can specify
-> >
-> > http://user@host/directory/file
-> >
-> > and it will prompt you for a password in a different style dialogue
-> > box than the normal authentication box. I was appalled to learn that
-> > all other browsers don't understand this convention, and if fact _we_
-> > are going to have to implement something similar since we're changing
-> > the CIO ftp system for Cisco.
-> >
-> > I just wish all browsers did the FTP protocol correctly.
->
-> I hope you meant ftp: instead of http: in the above
-> examples. RFC 1738 says:
Yeah, 'twas a typo on my part.
