> This has nothing to do with Apache. Putting a username and password
> in a HTTP URL is a non-standard and poorly designed concept implemented
> by some browsers.
>
Not according to RFC1738 section 3.1 if I'm reading it right.
>
> They internally fudge it into what they send;
> Apache is logging what is being sent.
>
Thats odd, in Netscape Enterprise 2.01 I get the results I want.
However, I don't want to run Netscape, but I do want the correct referer.
Tuc/TTSG
