[josm-dev] shocking - unsecure password sending!
Ľubomír Varga
luvar at plaintext.sk
Fri Oct 2 22:23:01 BST 2009
Thanks for that improvement. Now we are a little bit safer :-)
Have a nice day.
On Friday 02 October 2009 21:20:15 Dirk Stöcker wrote:
> On Thu, 24 Sep 2009, Valent Turkovic wrote:
> > I was amazed when my OSM username and password appeared on "Wall of
> > Sheep" during the conference at which I was presenting OpenStreetMap
> > project!
> >
> > I was using JOSM only to download some data, and I wasn't aware that JOSM
> > sends login data even when it is only downloading data and not sending.
>
> In rev. 2222 the capabilities request no longer sends username/password.
> This means again only uploads require authentication.
>
> Ciao
--
Odborník na všetko je zlý odborník. Ja sa snažím byť výnimkou potvrdzujúcou
pravidlo.
More information about the josm-dev
mailing list