Results for tag authentication
- Security through obscurity with HTTP Basic Authentication
Joor Loohuis, 2010-10-17One of the undying fallacies of web development is that an application can be secured by requiring that the users authenticate themselves using HTTP Basic Authentication. We regularly have to explain to developers how easy it is to extract the authentication data from a request. So it's probably useful to put this down in writing for future reference.