[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <4023C861.12032.C5D5F65@localhost>
From: nick at virus-l.demon.co.uk (Nick FitzGerald)
Subject: Interesting side effect of the new IE patch
Stefan Esser <s.esser@...atters.de> wrote:
> Of course they are not happy now. Like a lot of other people who relied
> on this standard. It is really sad, that Microsoft removes features
> because they are to lazy to think up other solutions. Like showing
> the username, password in a different color, not showing it at all...
> It is one thing to remove a feature because it is like writing the
> password to the back of your keyboard but it is another thing to
> just remove it because you have no clue how to make it obvious for
> people that this is not part of the servername.
<<snip>>
Hmmmmm, a security researcher employed by a web development company
advocating the use of non-standards compliant features that have
obvious security concerns...
How odd!
Regards,
Nick FitzGerald
Powered by blists - more mailing lists