Peter, This won't update the Security IPs for admin though, Will IT? I think that is his question is how to have the admin ips move with his dhcp address.
Danny On 18/Mar/2004 20:54:20, Peter wrote: > Better yet sign up for a free dyndns account and use the dyndns.ini that > is built into sambar. Sambar will automatically update itself if the ip > changes. Then use a protected admin page. You could even install https for > free and run with security or basic http using .htaccess digest auth. > > Peter > > -----Original Message----- > From: "Paul Alger" <[EMAIL PROTECTED]> > To: "sambar List Member" <[EMAIL PROTECTED]> > Date: Thu, 18 Mar 2004 11:34:08 -0800 > Subject: [sambar] IP Restrictions > > > It sounds like you want to manage a server with a dynamic ip? > > > > I manage several servers, some of which have dynamic ips. To solve the > > problems associated with a dynamic ips, I wrote a small script that > > does > > this: > > > > Once an hour, the remote (dynamic ip) server goes to a secret URL on my > > main > > server and "checks in". If the ip has changed since the last time it > > "Checked in", it e-mails me with the new IP# so I can make the proper > > DNS > > changes. > > > > I can go to a password protected page where all my servers are tracked > > and > > instantly know the last time any of my remote servers checked in and > > their > > current IP address. This not only helps me manage the dynamic IP > > problem but > > it alerts me when any of the servers overdue in checking in and may > > have > > gone down. > > > > The script is kind of proprietary but should be able to work for your > > situation with a little modification. Contact me off list if this is > > something you may be interested in. > > > > Paul Alger > > [EMAIL PROTECTED] > > > > -----Original Message----- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On > > Behalf Of > > David Martin - Ivy League Software > > Sent: Thursday, March 18, 2004 5:31 AM > > To: sambar List Member > > Subject: [sambar] IP Restrictions > > > > Up until I started using my off-site server my Sambar server was on my > > local > > net ... so I could use 10.0.0.* as an IP restriction but now with it > > half > > way across the country ... and my ISP has many different subnets ... > > without > > being able to use a FQDN the remote access features are useless to me > > ... > > unless I am missing something else. > > > > I use Dynamic DNS to point a FQDN to my DSLs current IP ... so if you > > go to > > office.mydomain.com it will go to my offices Dynamic DSL IP but if you > > go to > > www.mydomain.com it goes to the dedicated server. > > > > David Martin > > Ivy League Software > > > > :: -----Original Message----- > > :: From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > > Behalf > > :: Of Danny Mallory > > :: Sent: Thursday, March 18, 2004 12:20 AM > > :: To: sambar List Member > > :: Subject: [sambar] IP Restrictions > > :: > > :: > > :: What you are asking for is really not possible unless you are > > :: talking about performing a reverse DNS verification to compare > > :: the PTR record of the connecting IP address, Since this is still > > :: based on the IP address it would be a waist of time trying to do > > :: it with a dynamic addresses.. Any other solution is basically > > :: you trusting the client connecting to provide the FQDN within > > :: the specifications of http1.1(like vhost works) and anyone can > > :: spoof this.. (hosts file on clients computer) > > :: > > :: Unless I am missing something else, I don't think there is any > > :: room for FQDN when it comes to security and especially who I > > :: going to let get to admin. > > :: > > :: Danny > > :: > > :: On 17/Mar/2004 11:49:58, David Martin - Ivy League Software wrote: > > :: > It would be great if we could restrict by FQDN as well as IP. > > :: > > > :: > For example: System Administrator IP ... I have an off-site > > :: server that I > > :: > would like to admin from my office which has a DSL with a > > :: dynmaic IP ... > > :: > would be great if I could use my office.mydomain.com FQDN here. > > :: > > > :: > Thanks, > > :: > > > :: > David Martin > > :: > Ivy League Software > > :: > > > :: > > > :: > ------------------------------------------------------- > > :: > To unsubscribe please go to http://www.sambar.ch/list/ > > :: > > > :: > > > :: > > > :: > > > :: > > > :: > > > :: > > > :: > > :: > > :: > > :: > > :: > > :: > > :: ------------------------------------------------------- > > :: To unsubscribe please go to http://www.sambar.ch/list/ > > :: > > :: > > :: > > :: > > :: > > > > > > ------------------------------------------------------- > > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > > > > > > > > --- > > Incoming mail is certified Virus Free. > > Checked by AVG anti-virus system (http://www.grisoft.com). > > Version: 6.0.616 / Virus Database: 395 - Release Date: 3/8/2004 > > > > > > --- > > Outgoing mail is certified Virus Free. > > Checked by AVG anti-virus system (http://www.grisoft.com). > > Version: 6.0.616 / Virus Database: 395 - Release Date: 3/8/2004 > > > > > > > > > > ------------------------------------------------------- > > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > > ------------------------------------------------------- > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > > > ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
