On 8/25/06, Rob Church <robchur(a)gmail.com> wrote:
You're correct, of course, but it doesn't mean
we shouldn't be careful, too. :)
In any case we obviously wouldn't allow this for anon users, and
presumably we would do something nasty to anyone who caused us to get
a complaint like "Your user X deleted my website using GET requests!"
Steve