[Zope3-Users] Re: apache as zope3's frontend and NTLM

Chris Withers chris at simplistix.co.uk
Tue Nov 15 06:02:06 EST 2005


Philipp von Weitershausen wrote:
> True, it's not the nicest solution. But you could make it safer by first
> stripping the according request variable from the QUERY_STRING.
> mod_rewrite is quite powerful in that respect.

Is it just me, or should a deep feeling of uneasiness accompany the 
extraction of authentication credentials from a query string? ;-)

Chris

-- 
Simplistix - Content Management, Zope & Python Consulting
            - http://www.simplistix.co.uk


More information about the Zope3-users mailing list