From 8fc4c4ecee2763a7c75d7b067c94922a012a0cb9 Mon Sep 17 00:00:00 2001
From: Stefan Bodewig <bodewig@apache.org>
Date: Tue, 18 Aug 2009 11:28:37 +0000
Subject: [PATCH] a password inside the build file is not secure.  PR 20208

git-svn-id: https://svn.apache.org/repos/asf/ant/core/trunk@805367 13f79535-47bb-0310-9956-ffa450edef68
---
 docs/manual/CoreTasks/get.html | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/docs/manual/CoreTasks/get.html b/docs/manual/CoreTasks/get.html
index 9f41e0a7a..dc1a8c28a 100644
--- a/docs/manual/CoreTasks/get.html
+++ b/docs/manual/CoreTasks/get.html
@@ -136,8 +136,10 @@ for progress information.
     password="secret"/&gt;</pre>
 <p>
 Fetches some file from a server with access control. Because https is being used the
-fact that basic auth sends passwords in plaintext is moot.
-
+fact that basic auth sends passwords in plaintext is moot if you
+ignore the fact that it is part of your build file which may be
+readable by third parties.  If you need more security, consider using
+the <a href="input.html">input task</a> to query for a password.</p>
 
 </body>
 </html>