Win a copy of Java 9 Revealed this week in the Features new in Java 9 forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Security Question  RSS feed

 
Mark Stein
Ranch Hand
Posts: 75
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
From Chapt. 9 of the Deshmukh book:
Identify two mechanisms that are built into the HTTP specification (select two)
a) Basic
b) Client-Cert
c) FORM
d) Digest
e) Client-Digest
f) HTTPS
Answer : a, d
How come it's Digest and not FORM? The book says Digest is only supported by IE 5, and that "it is not supported by many servlet containers since the specification does not mandate it".
 
Stefan Zoerner
Author
Ranch Hand
Posts: 121
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello!
BASIC and DIGEST are both defined in RFC 2617 ("HTTP Authentication: Basic and Digest Access Authentication"). You can find it at RFC 2617.
FORM is build upon an HTTP-Post or -Get-Request, but not part of HTTP athentications (it is a special form submission.
Greetings from Hamburg,
Stefan
P.S.: Netscape 7.0 implements the DIGEST-Method as well.
[ October 23, 2002: Message edited by: Stefan Zoerner ]
 
Don't get me started about those stupid light bulbs.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!