The URL scheme does not in itself
pose a security threat. Users should
beware that there is no general guarantee
that a URL which at one time points
to a given object continues to do
so, and does not even at some later
time point to a different object
due to the movement of objects on
servers.
The use of URLs containing passwords
is clearly unwise.