http://lists.netsys.com/pipermail/full-disclosure/2004-June/022479.html

Thoughts?

Who all has servers configured like this? Who doesn't? Who already fixed it? etc...

Looks like to me that cPanel servers will be safe. I could be wrong but, I don't believe cPanel makes use of FakeBasicAuth. ;)

No, they don't. I checked once I found this.