Microsoft Web Services Security Recommendation: Disable HTTP-GET
Adam L. Beberg
beberg@mithral.com
Tue, 19 Mar 2002 21:50:56 -0800 (PST)
On Tue, 19 Mar 2002, Mr. FoRK wrote:
> And we all thought GET was safe...
>
> Security Recommendation: Disable HTTP-GET and HTTP-POST Protocols for
> Production XML Web Services
Pirates use HTTP, all that information being shared, shut down all the HTTP!
They got everything but port 80, soon only MS-signed communications will be
safe, and anything else filtered. *sigh* At least we still have PUT right?
Is it in anyones commercial interest for there to be an internet the way we
think of it? Is anything that's not pay-per-view (or spam) dead? Will we be
allowed to make arbitrary connections much longer without paying someone to
be a middleman and get us past all the firewalls and "safeguards"?
Even tunneling over HTTP is becoming a real pain.
- Adam L. "Duncan" Beberg
http://www.mithral.com/~beberg/
beberg@mithral.com