On Wednesday 16 October 2013 19:48:09 Aymeric Augustin wrote: > 2013/10/16 Javier Guerra Giraldez <[email protected]> > > > yes, they're different, but is there any value in emphasizing the > > difference? > > The main value lies in emphasizing the difference between HTTP GET and HTTP > POST. That difference has security implications, especially with regards to > CSRF. > Also, GET is supposed to be a "read only" operation.
http://thedailywtf.com/Articles/The_Spider_of_Doom.aspx -- You received this message because you are subscribed to the Google Groups "Django developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/django-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/201310161955.32716.shai%40platonix.com. For more options, visit https://groups.google.com/groups/opt_out.
