Posted by Jonathan N. Little on 03/22/07 21:17

jmacione@engr.uconn.edu wrote:
> for some websites, it seems you can login with the username and
> password in the URL through the post. Example, for yahoo.com, below,
> you can repace the username with your own and mypassword wtih your own
> and then you are automatically logged in.
>
> http://login.yahoo.com/config/login?login=username&passwd=mypassword&done=http://www.yahoo.com
^^^^^^^^^
First of all sending a password via the query string is *not* a very
smart thing to do. Also passing info via POST (attached content) vs GET
(query string) is a different process and if a site expects data via
POST but will also receive it by GET it is a sign of very sloppy
scripting! Yahoo, hmmm I'm not surprised!


>
> Im trying to do this now for other websites.
> gmail.com
> walgreens.com
>
> I could use some help if anyone knows how
> I cant get the post method to wrok for those sites.

Good, sounds like that have some rudimentary security! Why do you whant
to do this? Just too lazy to login?



--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com

[Back to original message]