[1819] in WWW Security List Archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Restrictions group without ask for the password

daemon@ATHENA.MIT.EDU (Adam Shostack)
Fri Apr 12 15:20:00 1996

From: Adam Shostack <adam@lighthouse.homeport.org>
To: jwalters@conicyt.cl
Date: Fri, 12 Apr 1996 12:46:20 -0500 (EST)
Cc: www-security@ns2.rutgers.edu
In-Reply-To: <316D4400.DD3@conicyt.cl> from "Jorge Walters" at Apr 11, 96 05:40:16 pm
Errors-To: owner-www-security@ns2.rutgers.edu

Jorge Walters wrote:

| Hi, is it posible to have some pages with restriction to some netmask ?
| 
| I know that is posible but I want don´t ask the user for password if it 
| has the correct netmask.

	I wouldn't bother.  If you're going to be using IP to handle
your authentication, your authentication will be so weak as to be
worthless.  The effort to set it up will be more than whats needed to
break it.

Adam

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1819] in WWW Security List Archive

Re: Restrictions group without ask for the password

daemon@ATHENA.MIT.EDU (Adam Shostack)Fri Apr 12 15:20:00 1996

daemon@ATHENA.MIT.EDU (Adam Shostack)
Fri Apr 12 15:20:00 1996