[EMAIL PROTECTED] wrote: > Do you mean that there is something insecure in ASSP's admin connection list, > or that there is a > risk of session hijacking?
Its inherently insecure. ASSP cannot tell if an IP address is being spoofed. If that is your only protection for the interface, it can be easy worked-around. ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
