undefined | Better HN

0 pointsventurecruelty3mo ago0 comments

You can always configure your HTTP logger to not log query parameters.

0 comments

From a security perspective it is best to assume everything in a GET query is public, it's not always your server logs that you have to worry about, it could also be logs on the clients system (as an example).

j / k navigate · click thread line to collapse

0 pointsventurecruelty3mo ago0 comments

You can always configure your HTTP logger to not log query parameters.

0 comments

ghxst3mo ago

From a security perspective it is best to assume everything in a GET query is public, it's not always your server logs that you have to worry about, it could also be logs on the clients system (as an example).

j / k navigate · click thread line to collapse