Feedback wanted regarding prettyURL()

Ismail Dönmez ismail at
Thu Aug 16 22:37:46 BST 2007

On Thursday 16 August 2007 18:31:48 Dirk Mueller wrote:
> Hi,
> To avoid the latest announced url spoofing attacks in a general way, I
> suggested to shorten the username, to avoid that the user misinterprets the
> username actually as part of the hostname.
> this however breaks the url pretty badly: the username is not really valid
> anymore. on the other hand, its unlikely that there will be a very long
> username given, especially if no password has been added.
> Comments, opinions?

This has my vote, else its pretty easy to spoof a URL [0]



Perfect is the enemy of good

More information about the kde-core-devel mailing list