So why a group of guy start to fix it!
Let's try to step by step little peeble by little peeble improve...No  
giant step just a tiny and simple one

>> Note that this is not doing you any good security-wise, because MC  
>> will
>> send the basic-auth user:password anyway, and only if that fails,  
>> digest
>> is tried. HTTPSocket authentication needs to be completely reworked.
>
> Not only authentication, everything. The whole class is just awful.
>
> Philippe
>