Kostas Evangelinos Wrote:
>IMHO, this will only work if the reverse proxy is transparent. The compared
>hased value includes the client ip address.
Yep, my mistake. You'd need to use Basic Authentication (clear text), but
this would still be ok as it's encrypted by SSL when it's travelling over
the internet.
Alex
From: Kostas Evangelinos <[EMAIL PROTECTED]>
To: Alex Hague <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: secure webmail and firewall issues...
Date: Tue, 11 Jul 2000 23:26:42 -0400
On Wed, Jul 12, 2000 at 11:21:51AM +1200, Alex Hague wrote:
| You don't need to authenticate to the reverse proxy as OWA will do all the
| authentication using NTLM. In the event that a buffer overflow
vunerability
| exists in one of the OWA pages you will still need to be authenticated to
| execute the vunerability, thus only your users could execute it....
IMHO, this will only work if the reverse proxy is transparent. The compared
hased value includes the client ip address.
Later,
Kos
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
