[3197] in WWW Security List Archive
Login Password Setup
daemon@ATHENA.MIT.EDU (Paul Schaap)
Fri Oct 11 00:48:00 1996
Date: 11 Oct 1996 10:49:32 +1000
From: "Paul Schaap" <paul_schaap@yes.optus.com.au>
To: "www-security" <www-security@ns2.rutgers.edu>
Errors-To: owner-www-security@ns2.rutgers.edu
<MEGA NEWBIE MODE ON ;-) >
Hi,
I run a client server unix system at a Mac site which is accessed via a =
Terminal Emulator - YUK. I have just started testing a Netscape =
implementation with ncsa httpd on a trial basis (rumor is apache is =
preferred ??) and need to sort out how to implement suitable security.
The issue is I have to make my site only accessable via a login/password =
and I would like the login/password to be the same as the user currently =
has for the telnet connection.
I have toyed with two solutions :-
1) .htaccess - perfect, however problem with this is it has its own =
login/password setup, can this be circumvented <hacked> to test the telnet =
security ?
2) html/cgi - real easy to test the validity of the login/password but any =
user with an ounce of nouse could figure their way around the security !?
Can anybody out there point me in the right direction ??
CHEERS
Poorly
<MEGA NEWBIE MODE OFF>
