Re: qmailadmin: version 1.0 todo

Gabriel Ambuehl Fri, 13 Jul 2001 08:00:56 -0700

-----BEGIN PGP SIGNED MESSAGE-----

Hello Ken,

Friday, July 13, 2001, 8:17:43 AM, you wrote:

> 5. Update pages so they stay on the same screen after modifications
> (Ken)
> 6. Change authentication scheme to use cookies instead of Time/IP
> (Ken)  

>    What do you guys think about using cookies instead? People
> behind 
>    proxies or NAT gateways can't use qmailadmin since thier IP
> changes 
>    during thier session.

I think cookies suck and thus have them deactivated. I think a
suitable session ID mechanism does its good job as well and doesn't
necessarily need to use the IP for authentication stuff which is
somewhat insecure anyway.





Best regards,
 Gabriel


-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5i

iQEVAwUBO08FBcZa2WpymlDxAQEBZwgAsCm0dnp2FBBchTM8cQVgqpKJPjX5Qssf
yqd48Nn40Yw2LMZVpM0m5tioq6zVypwrmXRYw4Dlpjb4Y+pb4Jg5RrWiIoT04Fos
7BGkw1lrEttGG/RUpUut2kknuZFxLn8rX2/Mh/NuZyoFBT0zXd4NTi681o5yZvm1
Am9HFLkGswvvPKQhVvHKc+CnSP6d2AYd6sOHbVT5ol92wplg7c/HDWZXD2zHxwwe
v5FTWki93VpkqhFSERsDPbAiMXjOIhmxJlBL/z3lTmB7r+rbFYC61Beyxq7cj/MI
3S2Ix1vAkc3cRveLFQ6YUVgcqfxx3CnM0bFeUj+YWiXWDM0rhB5S7g==
=8dv1
-----END PGP SIGNATURE-----

Re: qmailadmin: version 1.0 todo

Reply via email to