On Fri, 21 Apr 2006 15:58:27 +0200, Bjoern Hoehrmann <[EMAIL PROTECTED]>
wrote:
example) would contain a user name and password. I *assume* you're
referring to the userinfo production in RFC3986; e.g.,
http://user:[EMAIL PROTECTED]/path/?query
It may be better to use this terminology ("userinfo") explicitly,
along with an appropriate reference.
Also, AIUI, the security gods have determined that userinfo is a no-
no in URLs, and IE (for example) doesn't support it (at least in the
browser, ...
Internet Explorer removed support for illegal HTTP URLs such as the one
you've provided above because it has been abused too much in phishing
mails. For other schemes where this is perfectly valid, like ftp, it
works just fine in Internet Explorer.
What does IE does in such cases and do we want the draft to reflect that?
--
Anne van Kesteren
<http://annevankesteren.nl/>
<http://www.opera.com/>
