Slacker News Slacker News logo featuring a lazy sloth with a folded newspaper hat
  • top
  • new
  • show
  • ask
  • jobs
Library

Comment by apt-get

7 days ago

basic auth is secure, if used in combination with TLS.

1 comment

apt-get

Reply

shakna  6 days ago

Unfortunately, that only takes care of one of the vulnerabilities that comes with basic auth.

As basic auth sends the header for every single request, it is also vulnerable to CSRF attacks.

Slacker News

Product

  • API Reference
  • Hacker News RSS
  • Source on GitHub

Community

  • Support Ukraine
  • Equal Justice Initiative
  • GiveWell Charities