Typically the ISPs dhcp range won't change too much.. You might be able to use a wildcard to cover that range and simply trust that noone else on "that" subnet is going to be malicious... However, I would recommend getting some remote software installed on the system like pcANYwhere so that you could remote in and use the local browser to hit 127.0.0.1.. Just BE SURE to secure your remote software the best it can be. With pcanywhere that would be require symetric encryption.. I wouldn't consider using VNC for such a thing since the data transport is un-encrypted.
Danny On 18/Mar/2004 08:30:49, David Martin - Ivy League Software wrote: > Up until I started using my off-site server my Sambar server was on my local > net ... so I could use 10.0.0.* as an IP restriction but now with it half > way across the country ... and my ISP has many different subnets ... without > being able to use a FQDN the remote access features are useless to me ... > unless I am missing something else. > > I use Dynamic DNS to point a FQDN to my DSLs current IP ... so if you go to > office.mydomain.com it will go to my offices Dynamic DSL IP but if you go to > www.mydomain.com it goes to the dedicated server. > > David Martin > Ivy League Software > > :: -----Original Message----- > :: From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf > :: Of Danny Mallory > :: Sent: Thursday, March 18, 2004 12:20 AM > :: To: sambar List Member > :: Subject: [sambar] IP Restrictions > :: > :: > :: What you are asking for is really not possible unless you are > :: talking about performing a reverse DNS verification to compare > :: the PTR record of the connecting IP address, Since this is still > :: based on the IP address it would be a waist of time trying to do > :: it with a dynamic addresses.. Any other solution is basically > :: you trusting the client connecting to provide the FQDN within > :: the specifications of http1.1(like vhost works) and anyone can > :: spoof this.. (hosts file on clients computer) > :: > :: Unless I am missing something else, I don't think there is any > :: room for FQDN when it comes to security and especially who I > :: going to let get to admin. > :: > :: Danny > :: > :: On 17/Mar/2004 11:49:58, David Martin - Ivy League Software wrote: > :: > It would be great if we could restrict by FQDN as well as IP. > :: > > :: > For example: System Administrator IP ... I have an off-site > :: server that I > :: > would like to admin from my office which has a DSL with a > :: dynmaic IP ... > :: > would be great if I could use my office.mydomain.com FQDN here. > :: > > :: > Thanks, > :: > > :: > David Martin > :: > Ivy League Software > :: > > :: > > :: > ------------------------------------------------------- > :: > To unsubscribe please go to http://www.sambar.ch/list/ > :: > > :: > > :: > > :: > > :: > > :: > > :: > > :: > :: > :: > :: > :: > :: > :: ------------------------------------------------------- > :: To unsubscribe please go to http://www.sambar.ch/list/ > :: > :: > :: > :: > :: > > > ------------------------------------------------------- > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > > > ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
