Andr&yod; Malo wrote: > > * Rob Emanuele wrote: > > > Any suggestions for a workaround? > > forms: use POST > simple URLs: use mod_rewrite or something to provide the browser a URL > without query strings. > > (client-side: use another browser ;-)
Or, if you really really want to touch only Apache, and are willing to take the responsibility, do the following VERY CAREFULLY: <off the record> patch mod_auth_digest.c: && d_uri.path[0] == '*' && d_uri.path[1] == '\0')) + #ifdef NOT_FOR_ME /* check that query matches */ || (d_uri.query != r_uri.query && (!d_uri.query || !r_uri.query || strcmp(d_uri.query, r_uri.query))) + #endif ) { </off the record> And remember: you haven't heard it from me! ;-) -- Eli Marmor [EMAIL PROTECTED] CTO, Founder Netmask (El-Mar) Internet Technologies Ltd. __________________________________________________________ Tel.: +972-9-766-1020 8 Yad-Harutzim St. Fax.: +972-9-766-1314 P.O.B. 7004 Mobile: +972-50-23-7338 Kfar-Saba 44641, Israel