[2554] in WWW Security List Archive
Re: Web servers and commercial applications
daemon@ATHENA.MIT.EDU (Chris Garrigues)
Thu Aug 1 21:18:19 1996
To: Monish Raj <monish@ilx.com>
Cc: www-security@ns2.rutgers.edu, monish@jelly.devo.ilx.com,
cwg@deepeddy.DeepEddy.Com
In-Reply-To: Your message of "Thu, 01 Aug 1996 14:39:47 EDT."
<199608011839.AA19877@jelly.devo.ilx.com>
Date: Thu, 01 Aug 1996 18:20:07 -0500
From: Chris Garrigues <cwg@DeepEddy.Com>
Errors-To: owner-www-security@ns2.rutgers.edu
--===_-1_Thu_Aug__1_18:20:06_CDT_1996
Content-Type: text/plain; charset=us-ascii
> If a user "logs in" to our group of servers from one machine,
> we don't want him/her to log in from another machine.
Doesn't sound that hard, but do note that you can't stop people behind a
firewall from sharing accounts because they'll all look like they come from
the same site. Also, there are lots of reasons someone might need to change
where they come in from, many of which are out of their control. You'll need
a reasonable way to manage this when it comes up.
Chris
--
Chris Garrigues O- cwg@DeepEddy.Com
Deep Eddy Internet Consulting +1 512 432 4046
609 Deep Eddy Avenue
Austin, TX 78703-4513 http://www.DeepEddy.Com/~cwg/
--===_-1_Thu_Aug__1_18:20:06_CDT_1996
Content-Type: application/pgp-signature
-----BEGIN PGP MESSAGE-----
Version: 2.6.2
iQB1AwUBMgE7oZaQnaaFII2dAQFTbAL/WMlEA4qCxG6ZUgGC4cgVS17+yNh6BXHP
QrDIh+uVxDZNMhjdpmEOSUtqygR4cNZnhoZC5+a0D7sUIrJmbgEexKnXVOW7hCwb
8ckAA2S6E7lVXMwpXx5xmJgPI0VQUe1z
=JZZ8
-----END PGP MESSAGE-----
--===_-1_Thu_Aug__1_18:20:06_CDT_1996--
