Re-enabling user:pass with IE
I made this comment over at David Cumps' blog, but in the interest of blam (blog spam), I'll repeat it here:
David's posting is a description of the Registry poke you can do to re-enable the URL form:
protocol://<user>:<password>@<host>:<port>/<url-path>
My comment:
While I respect your wanting the user:pass functionality...
Remember that re-enabling it opens you up to the exploit, so please be careful when clicking links on sites that could use it in a less than nice fashion. http://zcat.wired.net.nz/upgrade/ shows a neat use of it (View Source and look at the 'Upgrade here' link to see the joke/spoof)
Also, just to pick nits. From the RFC you show, there are two important lines:
3.1. Common Internet Scheme Syntax
While the syntax for the rest of the URL may vary depending on the particular scheme selected
Some schemes (e.g., ftp) allow the
specification of a user name.
and the big one is at 3.3. HTTP
An HTTP URL takes the form:
http://<host>:<port>/<path>?<searchpart>
Notice that the definition of an HTTP URL does not include the user:password combo. This form really is only supported by a few protocols (FTP being the main one)
Either way, enjoy, but be careful
TTFN - Kent
