> > > Never put your password in the URL. > > > > Why not? > > Because it's a security hazard. Could you elaborate, please? Does it cause the password to be sent as clear text rather than using NTLM? I'm asking in the context that the URL w/ credentials is NOT exposed to any UI.