UGN Security

Re-Enable IE 6.x's http://user:[email protected]/ functionality

Posted By: Gremelin

Re-Enable IE 6.x's http://user:[email protected]/ functionality - 03/29/04 02:13 PM

In the IE patch MS04-004 Cumulative Security Update for Internet Explorer (832894) Microsoft removed the ability to define a user/password variable in a http or https url.

Now most people won't mind this, however for myself I use htaccess every 30 seconds... So I emailed Microsoft with one of my many aliases and got a fix after about 4 days of micky mousing around...

This fix can be found via their helpdesk as 834489 . I've taken the liberty to making a regedit entry for you all...

Please insert the following data in a notepad document entitled access.reg:
Windows Registry Editor Version 5.00

; Re-Enable the functionality of http://user:[email protected]/ in IE.
; Please note that Microsoft calls it a patch that the function not work
; Please see the Microsoft Security Update here:
; And remember kids, don't give Microsoft your windows key or any identifiable information
; when you talk to their web support... They don't need it for support wink ...
; Gizmo A. Lay (Marcus Duell)


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]
Now save the file and execute it. Enjoy being able to authenticate yourself in HTTP(s) url's...
Posted By: dashocker

Re: Re-Enable IE 6.x's http://user:[email protected]/ functionality - 03/30/04 04:47 AM

Giz, you are my hero...
Or rather: you would be my hero if this worked on my machine. Perhaps the fix is XP only? Whenever I follow your tip it gives me the "This is not a registry script. You can only import registry files" error. The keys that are being changed don't exist on my comp. Any suggestions? I tried creating them but I don't think I did it right; or it was ineffective.

KTNX, works now. Note to Windows 98SE users, you have to change the first line to REGEDIT4 (at least I did).
Posted By: Gremelin

Re: Re-Enable IE 6.x's http://user:[email protected]/ functionality - 03/30/04 06:26 AM

Add the keys. If you're patched they won't exist on your computer. I had to create them manually on my machine.

Note that you need to add the "registry version whatever" to the reg script, note that it has to be your version of the registry.
© 2018 UGN Security Forum