Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Security Question

 
Mark Stein
Ranch Hand
Posts: 75
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
From Chapt. 9 of the Deshmukh book:
Identify two mechanisms that are built into the HTTP specification (select two)
a) Basic
b) Client-Cert
c) FORM
d) Digest
e) Client-Digest
f) HTTPS
Answer : a, d
How come it's Digest and not FORM? The book says Digest is only supported by IE 5, and that "it is not supported by many servlet containers since the specification does not mandate it".
 
Stefan Zoerner
Author
Ranch Hand
Posts: 121
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello!
BASIC and DIGEST are both defined in RFC 2617 ("HTTP Authentication: Basic and Digest Access Authentication"). You can find it at RFC 2617.
FORM is build upon an HTTP-Post or -Get-Request, but not part of HTTP athentications (it is a special form submission.
Greetings from Hamburg,
Stefan
P.S.: Netscape 7.0 implements the DIGEST-Method as well.
[ October 23, 2002: Message edited by: Stefan Zoerner ]
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic