Slacker News Slacker News logo featuring a lazy sloth with a folded newspaper hat
  • top
  • new
  • show
  • ask
  • jobs
Library

Comment by shakna

7 days ago

HTTP basic auth is not secure.

2 comments

shakna

Reply

apt-get  7 days ago

basic auth is secure, if used in combination with TLS.

  • shakna  6 days ago

    Unfortunately, that only takes care of one of the vulnerabilities that comes with basic auth.

    As basic auth sends the header for every single request, it is also vulnerable to CSRF attacks.

Slacker News

Product

  • API Reference
  • Hacker News RSS
  • Source on GitHub

Community

  • Support Ukraine
  • Equal Justice Initiative
  • GiveWell Charities