The proper response should be to expire the insecurely-sent passwords. | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

miorel on April 18, 2013 | parent | context | favorite | on: Why does your API still use HTTP Basic Auth?

The proper response should be to expire the insecurely-sent passwords.

Adirael on April 18, 2013 [–]

Clever. I like this much more than just closing the port 80.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact