Y
Hacker News
new
|
ask
|
show
|
jobs
by
grepthisab
2515 days ago
Isn't this pretty similar to basic auth? Passing credentials in plaintext but over TLS.
1 comments
jomendoz
2515 days ago
Yes. But URLs tent to be logged more than HTTP headers or payloads. Any L7 proxy can spit out requested paths and the password will be preserved in different places for long periods of time.
link
grepthisab
2514 days ago
Ah, that makes sense. Thanks!
link