[45667] in Cypherpunks
Re: (Fwd) SECURITY ALERT: Password protection bug in Netscape
daemon@ATHENA.MIT.EDU (Jeff Barber)
Wed Dec 20 09:41:09 1995
From: Jeff Barber <jeffb@sware.com>
To: karl@cosmos.cosmos.att.com (Karl A. Siil)
Date: Wed, 20 Dec 1995 10:01:24 -0500 (EST)
Cc: cypherpunks@toad.com (Cypherpunks List)
In-Reply-To: <2.2b9.32.19951220115525.0069303c@cosmos.cosmos.att.com> from "Karl A. Siil" at Dec 20, 95 06:55:25 am
Karl A. Siil writes:
> On a related note, how does Netscape (or HTTP in general) authenticate using
> the password? My best guess, without a sniffer, is (making up error codes as
> I go along, but you get the point):
> Anyway, lots of conjecture (sp?) here. Does anyone know how it really works
> or can point me at a reference? Thanks.
http://www.w3.org/hypertext/WWW/Protocols/HTTP1.0/draft-ietf-http-spec.html#AA
-- Jeff
