Peter Hansen wrote:
BartlebyScrivener wrote:
but googling for basic authentication and
maybe realm and/or host will find you other sites with less
technically detailed material.
This looks promising, but it'll take me a week to understand it :)
Steve Holden [EMAIL PROTECTED] writes:
Underlining your point, the difference between the two is that digest
offers *strong* authentication (i.e. is not subject to replay attacks)
As I mentioned in another post, that's really not enough, since digest
still exposes the password hash to offline
New to Python and Programming. Trying to make scripts that will open
sites and automatically log me on.
The following example is from the urllib2 module.
What are realm and host in this example.
import urllib2
# Create an OpenerDirector with support for Basic HTTP
Authentication...
auth_handler
BartlebyScrivener wrote:
New to Python and Programming. Trying to make scripts that will open
sites and automatically log me on.
The following example is from the urllib2 module.
What are realm and host in this example.
http://www.ietf.org/rfc/rfc2617.txt probably provides more background
BartlebyScrivener [EMAIL PROTECTED] writes:
New to Python and Programming. Trying to make scripts that will open
sites and automatically log me on.
A common enough things to want to do.
The following example is from the urllib2 module.
What are realm and host in this example.
Host is a
BartlebyScrivener wrote:
New to Python and Programming. Trying to make scripts that will open
sites and automatically log me on.
[snip]
Does anyone have a simple example of a script that opens, say, gmail or
some other commonly accessed site that requires a username and password
so that I can
but googling for basic authentication and
maybe realm and/or host will find you other sites with less
technically detailed material.
This looks promising, but it'll take me a week to understand it :)
http://www.voidspace.org.uk/python/articles/authentication.shtm
Thanks for your help with
BartlebyScrivener wrote:
but googling for basic authentication and
maybe realm and/or host will find you other sites with less
technically detailed material.
This looks promising, but it'll take me a week to understand it :)
http://www.voidspace.org.uk/python/articles/authentication.shtm
Thanks, Peter.
Peter Hansen wrote:
BartlebyScrivener wrote:
but googling for basic authentication and
maybe realm and/or host will find you other sites with less
technically detailed material.
This looks promising, but it'll take me a week to understand it :)
Peter Hansen [EMAIL PROTECTED] writes:
By the way, note that neither basic auth nor digest auth provide any
real security, and in fact with basic auth the userid and password are
sent *in cleartext*. For any serious production site these techniques
should probably not be used without
Mike Meyer wrote:
Peter Hansen [EMAIL PROTECTED] writes:
By the way, note that neither basic auth nor digest auth provide any
real security, and in fact with basic auth the userid and password are
sent *in cleartext*. For any serious production site these techniques
should probably not be used
Peter Hansen [EMAIL PROTECTED] writes:
My information about digest was either obsolete or simply wrong, as I
didn't realize it had all the nonce and anti-replay support it appears
to have. (I may have been remembering articles about how much of that
wasn't supported widely at some time in the
Peter Hansen [EMAIL PROTECTED] writes:
Mike Meyer wrote:
Peter Hansen [EMAIL PROTECTED] writes:
By the way, note that neither basic auth nor digest auth provide any
real security, and in fact with basic auth the userid and password are
sent *in cleartext*. For any serious production site these
Mike Meyer [EMAIL PROTECTED] writes:
Only if the userid and password are part of the content. If you're
doing the usual form-based authentication, then they are. If you're
doing an HTTP-based authentication, then they aren't - the
authentication information is in the headers, and can be
14 matches
Mail list logo
