No different than apache .htaccess files as well.
G.Waleed Kavalec wrote:
From the site...
"In order to password protect documents using IIS, you have to
actually create accounts on the NT machine. You then assign
permissions to the various documents so that those users have
permission to read those documents. While this sounds simple enough,
keep in mind that this means that user accounts and passwords are
being passed across the Internet in plain text."
This presumes you DON'T have an https connection first.
If you don't, shame on you.
