HTTP HTTP GET HTTP Basic auth # Server-side HTTP/1.1 200 Things are fine in server land Server: Microsoft-IIS/5.0 Content-Type: text/html; charset=iso-8859-1 Content-Length: 32 Finally, this is the real page! HTTP/1.1 401 Sorry wrong password (2) Server: Microsoft-IIS/5.0 Content-Type: text/html; charset=iso-8859-1 Content-Length: 29 WWW-Authenticate: Basic realm="testrealm" This is a bad password page! # Client-side http HTTP Basic authorization, then without authorization -u testuser:testpass http://%HOSTIP:%HTTPPORT/20400100 --next --no-basic http://%HOSTIP:%HTTPPORT/20400200 # Verify data after the test has been "shot" ^User-Agent:.* GET /20400100 HTTP/1.1 Host: %HOSTIP:%HTTPPORT Authorization: Basic dGVzdHVzZXI6dGVzdHBhc3M= Accept: */* GET /20400200 HTTP/1.1 Host: %HOSTIP:%HTTPPORT Accept: */* Finally, this is the real page! This is a bad password page!