Errata Security: Apple's secret "wispr" request
The idea is that smart WiFi portals will detect that this is a WISPr-supporting device, and send back a WISPr message in XML. This allows the iPhone to then login with cached credentials via another XML message. This means, for example, you might be able to grab somebody's credentials with a properly configured WiFi access-point.
more on erratasec.blogspot.com
iPhones send out a special HTTP request that discovers wifi networks protected by a login page. Little detail that improves apps' usability, but can be also missused. For example to access free iPhone wifi at Starbucks without having an iPhone.
