+1 to dropping Section 13 completely. The discussion of authentication should be moved into Section 14.
- James Thomas Broyer wrote: > > 2006/6/7, Paul Hoffman <[EMAIL PROTECTED]>: >> I propose the following paragraph for the entire contents of section >> 13; comments are welcome. > > I'd rather remove section 13 and rework section 14, pointing at > HTTP/1.1, RFC2617 and TLS, and/or copying WebDAV's section 17 > (particularly subsections about authentication, DoS and "security > through obscurity") >
