/vulndb/HTTP Authentication Scheme

HTTP authentication mechanisms are not considered to be efficient for modern security standards because they don’t provide the level of flexibility usually available in form-based authentication implementations.

Solution

Consider moving from HTTP-based Authentication to form-based authentication, which is more flexible and extensible.

References

http://en.wikipedia.org/wiki/Basic_access_authentication http://en.wikipedia.org/wiki/Digest_authentication http://en.wikipedia.org/wiki/NTLM