Tag Archives: web

Passwords in email

Dear web sites: Please do not send me my password in plain-text in an email. My email is not necessarily secure. The protocols by which email is sent through the Internet are unencrypted. When you send me an email with my password in it, I delete it immediately. phpBB does it. So does Geni. Movember [...]

Redirect referer test

A web user is looking at page A. He clicks on a link for page B. That page has a META Refresh to page C. What is the value of HTTP_REFERER for that last request? What if the redirect was a Status 307? Or a location.replace() JavaScript call? What if he’s using Opera? I’ve been [...]