What's a company secret you can share now that you no longer work there?CaspianXI@lemmy.world to Ask Lemmy@lemmy.world – 1253 points – 12 months ago935Post a CommentPreviewYou are viewing a single commentView all commentsShow the parent commentI'm not 100% on this but I think GET requests are logged by default. POST requests, normally used for passwords, don't get logged by default. BUT the Uri would get logged would get logged on both, so if the URI contained @username:Password then it's likely all there in the logs GET requests are logged That’s why I specified the receiving web server doesn’t log the URI in my question.Get and post requests are logged The difference is that the logged get requests will also include any query params GET /some/uri?user=Alpha&pass=bravo While a post request will have those same params sent as part of a form body request. Those aren’t logged and so it would look like this POST /some/uri
I'm not 100% on this but I think GET requests are logged by default. POST requests, normally used for passwords, don't get logged by default. BUT the Uri would get logged would get logged on both, so if the URI contained @username:Password then it's likely all there in the logs GET requests are logged That’s why I specified the receiving web server doesn’t log the URI in my question.Get and post requests are logged The difference is that the logged get requests will also include any query params GET /some/uri?user=Alpha&pass=bravo While a post request will have those same params sent as part of a form body request. Those aren’t logged and so it would look like this POST /some/uri
GET requests are logged That’s why I specified the receiving web server doesn’t log the URI in my question.
Get and post requests are logged The difference is that the logged get requests will also include any query params GET /some/uri?user=Alpha&pass=bravo While a post request will have those same params sent as part of a form body request. Those aren’t logged and so it would look like this POST /some/uri
I'm not 100% on this but I think GET requests are logged by default.
POST requests, normally used for passwords, don't get logged by default.
BUT the Uri would get logged would get logged on both, so if the URI contained @username:Password then it's likely all there in the logs
That’s why I specified
in my question.
Get and post requests are logged
The difference is that the logged get requests will also include any query params
GET /some/uri?user=Alpha&pass=bravo
While a post request will have those same params sent as part of a form body request. Those aren’t logged and so it would look like this
POST /some/uri