"Kevin Gerry" <[EMAIL PROTECTED]> wrote: > Actually- there is a registry key you can put in to change back to the > 'correct' user:[EMAIL PROTECTED] way of processing... So it DOES still have that > in > there to follow RFC- Just needs to be activated first.
Actually, this is not and never was, RFC-compliant _for HTTP[S] URLs_. Please read the relevant RFCs to see your assertion that accepting/ parsing HTTP[S] URLs including "userinfo" data is "correct" is, in fact, badly mistaken. > (It's in a newer KB article.) And the correct syntax of HTTP[S] URLs is in older _and_ newer RFCs... Regards, Nick FitzGerald _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
