[3141] in WWW Security List Archive
Re: Bloomingdales security?
daemon@ATHENA.MIT.EDU (Anthony R. Plastino III)
Fri Oct 4 16:19:53 1996
Date: Fri, 04 Oct 1996 11:14:03 -0700
To: "David W. Morris" <dwm@xpasc.com>
From: "Anthony R. Plastino III" <tony.plastino@CyberSAFE.COM>
Cc: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
At 10:25 AM 10/4/96 -0700, David W. Morris wrote:
>
>
>On Thu, 3 Oct 1996, Anthony R. Plastino III wrote:
>
>> >Well I checked and how does this look:
>> ><FORM METHOD=POST ACTION="/scripts/order.exe">
>>
what does this URL say? Do you see https:// in it? I don't and that is why
I wrote what I did. Pardon me for intruding on your sacred ground. . .
>
>I also hope they don't pay for your knowledge about how security works
>with HTTPS ans SHTTP. As someone else has already noted, if the
>form action had been, https:// ...
and that is my point. It was not action="https://. . .
I don't appreciate the flame.
Anthony R. Plastino III - Systems Administrator
CyberSafe Corporation - tony.plastino@CyberSafe.COM
1605 NW Sammamish Rd. - http://www.cybersafe.com
Issaquah, WA 98027 -
=====================================================
Mine are _not_ the opinions of my employer.
