[1744] in WWW Security List Archive
Re: User Auth.
daemon@ATHENA.MIT.EDU (Jeremey Barrett)
Thu Mar 28 04:15:30 1996
Date: Tue, 26 Mar 1996 22:01:23 -0800 (PST)
From: Jeremey Barrett <jeremey@forequest.com>
To: www-security@ns2.rutgers.edu
In-Reply-To: <960326203850.ZM18263@swcheung-pc>
Errors-To: owner-www-security@ns2.rutgers.edu
Heh... good luck. As far as I know, there is no way to un-cache the
username and password entered into an authentication dialog. One,
albeit somewhat more annoying, alternative is to set cookies yourself,
instead of relying on WWW authenticate. Then you have total control over
their lifetime, etc...
On Tue, 26 Mar 1996, S.W. Cheung wrote:
> Dear All,
>
> I got a question about User Auth. How can I force or allow my users to
> "logout" without quitting the client?
>
>
> --
> S.W. Cheung
> email: swcheung@hkimd.cig.mot.com
> phone: (852) 2966-3774
>
>
>
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Jeremey Barrett
Senior Software Engineer jeremey@forequest.com
The ForeQuest Company http://www.forequest.com/
"less is more."
-- Mies van de Rohe.
Ken Thompson has an automobile which he helped design. Unlike most
automobiles, it has neither speedometer, nor gas gage, nor any of the
numerous idiot lights which plague the modern driver. Rather, if the
driver makes any mistake, a giant "?" lights up in the center of the
dashboard. "The experienced driver", he says, "will usually know
what's wrong."
-- 'fortune` output
