No problem, you can still install mod_security as separate module within your Apache instance.
here you can find basic information about validating SESSIONs. It could be good entry point for your modsecurity's adventure: http://blog.modsecurity.org/2010/09/advanced-topic-of-the-week-validating-sessionids.html :) /lm ----- Oryginalna wiadomość ----- Od: "Eric Stein" <[email protected]> Do: [email protected] Wysłane: środa, 10 lipiec 2013 14:05:52 Temat: RE: [cas-user] Prevent multiple logins Leszek, Thanks for replying. We're running Apache as the web server, but no reverse proxy. Is there some documentation around this functionality in modsecurity? I've been searching the web, and I don't see anything relevant. Alternately, is there nothing built into CAS to do this? It seems like it should be a pretty common use case. Thanks, Eric Stein -----Original Message----- From: Leszek Miś [mailto:[email protected]] Sent: Tuesday, July 09, 2013 11:38 AM To: [email protected] Subject: Re: [cas-user] Prevent multiple logins If you are using Apache/Nginx as Reverse Proxy, you can create a dedicated modsecurity rules for finding and preventing multiple logins for the same username. Leszek Miś Owner & System Architect Red Hat Certified Architect & Security Specialist tel: 791-611-309 Emerge Systems http://www.emerge.pl ----- Oryginalna wiadomość ----- Od: "Eric Stein" <[email protected]> Do: [email protected] Wysłane: wtorek, 9 lipiec 2013 17:14:44 Temat: [cas-user] Prevent multiple logins Hi, Is there a way to get CAS to prevent multiple logins from the same account (same userid)? We have CAS acting as the authentication provider for a Shibboleth IdP / SP pair. Thanks, Eric Stein -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
