On 12 Dec 2006 at 10:41, Micheal Espinola Jr wrote: > Its inherently insecure. ASSP cannot tell if an IP address is being > spoofed. If that is your only protection for the interface, it can be > easy worked-around.
Apart from the fact it's being sent in plain text and is insecure that way, doesn't the TCP session give some assurance? paul ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
