Y
Hacker News
new
|
ask
|
show
|
jobs
by
nilobject
6583 days ago
I have my phpMyAdmin installed only on my secure site, behind HTTP authentication as well.
2 comments
rcoder
6583 days ago
If you're using HTTP Basic auth, your browser will happily cache the credentials and re-submit them every time when asked for the same server/realm combination. You'll need to restart your browser to clear the cached auth data.
link
simonw
6583 days ago
The reason CSRF is scary is that it works against those defences.
link