[josm-dev] shocking - unsecure password sending!
Dirk Stöcker
openstreetmap at dstoecker.de
Wed Oct 7 16:03:00 BST 2009
On Wed, 7 Oct 2009, Karl Guggisberg wrote:
>> We have proxy authentication. But it seems there are situations where the
>> passwords/usernames somehow gets mixed up.
>
> We don't have Digest Authentication and we don't have NTLM, and there are
> problems with the current support for proxy authentication. The proposed
> patch for proxy authentication with Basic Authentication using the standard
> header wasn't applied, as far as I remember.
>
> Why reinvent the weel? Luickly there are smart people providing http client
> libraries which would shield JOSM from the nasty details of proxy
> authentication, libraries which are tested against a heterogeneous set of
> proxy software "in the wild".
Doesn't java already manage that? What are the proy settings in Java used
for when not for proxy authentication?
P.S. Your quoting is broken and hard to read.
Ciao
--
http://www.dstoecker.eu/ (PGP key available)
More information about the josm-dev
mailing list