User Name:Password

Since installing sp2 - i have been unable to type my user name and password in the url for site that i am a member of. Microsoft stated that it was a new security add on. Example:

Code:

http://username:password@www.whatever.com

Is there a work around on this issue. Any help would be appreciated. marcus1239@adelphia.net

 

Hi marcus1239 and welcome to the forum.

I tweaked your post a little since the forum software saw part of your sample link as a smiley.

I'm not aware of any work-around for your problem but if there is one, someone will likely post to say what. I mostly put this in to let you know why your post looks a little different.

 

Just did a search and came accross this. It mentions a patch that you can get from Microsoft. I don't know if it will fix or problem or not. It kind of sounds like it depends on how the site has been designed. Also I can't think of any place that I that I use username and password in the url.

h**p://www.infoworld.com/article/04/02/10/HNbrokenie_1.html

I also came accross this Microsoft article that describes this issue. At the very end it walks you through adding a couple of DWORDs to your registry that are supposed to disable this feature.

h**p://support.microsoft.com/default.aspx?scid=kb;en-us;Q834489

I hope these help you out.
Eric

 

Hi Markus,
The above link supplied references IE versions up to 6.0 sp1 and while I'm not sure if this will still apply to or work for sp2, I would like to stress the advice in the kbarticle that it is not recommended to try and override this security fix. Website spoofing, IE hijacks both for sites, search engines, homepages, toolbar additions etc. have gotten so rampant as to fall into the category of a plague. Boards are filled with users in misery due to such. Have you not noticed all the hijack logs and spyware/malware removal posts? Even search engine hits are filled with these unless care is taken to filter them out. Unless this site is truly needed, don't undo what has been done to make your browsing safer.

Does this site offer the user/password login popup dialog with an offer to remember and save it as cookie? If so consider this as a workaround. As quoted from the link:

The choice, of course, is ultimately yours but I thought I'd throw this in just to give you a little friendly poke or second chance to consider or mull over the risks. It is done so with the best of intension's and not meant as a soapbox lecture.

 

Thanks

Thank you all for the good advice - and thank you Eric - your suggestion did the trick - all the help is greatly appreciated.