Hello,
I wish to do so that, from one side the whole set of documents from
our site be normaly referenced and retrieved when looked from one of
our team users, and, from the other side that any external web visitor
only see the references to public document. As the spider is working
from inside the site, access controls are not efficient. More
specifically, the research engine may provide references and display
pages strictly for internal use.
One solution may be to use tags or categories, but, during research
stage, it may still be possible to hack the URL in order to suppress
the CGI research limiting parameters (t=, cat=).
Another way to overpass this problem would be to constrain in the
template file part (<!--variables ... -->) the CGI parameters that we
want in order that they cannot be suppressed or overriden during a
research. However it would still be possible to short-cut this solution
with the "tmplt=" CGI parameter, but in case where the restriction is
added as a defect option in the template, the protection seems enough
since it is not possible to guess the name of the other templates.
What do you think about this ?
Sincerely.
Dominique Asselineau
--
+------------------------------------o-------------------------------------+
| P-mail: | E-mail: |
| E.N.S.T. - Dep. TSI | [EMAIL PROTECTED] |
| Dominique Asselineau | Phone: (33/0) 1 45 81 78 91 |
| 46, rue Barrault | Fax: (33/0) 1 45 81 37 94 |
| 75634 PARIS Cedex 13 - France | |
+------------------------------------o-------------------------------------+
___________________________________________
If you want to unsubscribe send "unsubscribe general"
to [EMAIL PROTECTED]
