On Wednesday 16 October 2013 19:48:09 Aymeric Augustin wrote: > 2013/10/16 Javier Guerra Giraldez <jav...@guerrag.com> > > > yes, they're different, but is there any value in emphasizing the > > difference? > > The main value lies in emphasizing the difference between HTTP GET and HTTP > POST. That difference has security implications, especially with regards to > CSRF. > Also, GET is supposed to be a "read only" operation.
http://thedailywtf.com/Articles/The_Spider_of_Doom.aspx -- You received this message because you are subscribed to the Google Groups "Django developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-developers+unsubscr...@googlegroups.com. To post to this group, send email to django-developers@googlegroups.com. Visit this group at http://groups.google.com/group/django-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/201310161955.32716.shai%40platonix.com. For more options, visit https://groups.google.com/groups/opt_out.
