Follow-up Comment #9, bug #56909 (project wget):
How about adding a warning in the documentation and/or man page ?
That feels like a simple solution :
- RFC is still respected, there are no change in behavior or added options
- Users have a way to be warned that manually adding Authenticate headers (or
any headers with secret data) may be leaked on 30x response, and thus should
be manipulated with care.
_______________________________________________________
Reply to this item at:
<https://savannah.gnu.org/bugs/?56909>
_______________________________________________
Message sent via Savannah
https://savannah.gnu.org/
