Jon Robison wrote:
> Someone please tell me if I am wrong - does the USER_AGENT field get
> some kind of special serial number from the browser, or is it just a
> version identified?
>
> Best example - large company with 1000 PC's, all with same Netscape
> installed. How then does the HTTP_USER
* Randal L. Schwartz ([EMAIL PROTECTED]) [09 11:00]:
> > "Jon" == Jon Robison <[EMAIL PROTECTED]> writes:
>
> Jon> Randall, you want to expound upon that?
>
> Barely ignoring the spelling of my name, I'll simply claim
>
> "it's not unique".
>
> Neither is IP address. Or anyth
On Mon, Nov 19, 2001 at 07:51:55AM -0800, Randal L. Schwartz wrote:
> But this is obvious. I'm confused about why I'd have to explain it. :(
I posted this a year or two back:
[EMAIL PROTECTED]">http://mathforum.org/epigone/modperl/jytwortwor/[EMAIL PROTECTED]
Here is the relevant part of tha
> "Jon" == Jon Robison <[EMAIL PROTECTED]> writes:
Jon> Randall, you want to expound upon that?
Barely ignoring the spelling of my name, I'll simply claim
"it's not unique".
Neither is IP address. Or anything that you haven't specifically
round-tripped to the browser. And that do
How about using an Apache::Sessions id instead of IP address?
--Jon Robison
"Randal L. Schwartz" wrote:
>
> > "fliptop" == fliptop <[EMAIL PROTECTED]> writes:
>
> fliptop> i have found that using the HTTP_USER_AGENT environment
> fliptop> variable instead of ip address solves the problem
Randall, you want to expound upon that?
--Jon Robison
"Randal L. Schwartz" wrote:
>
> > "fliptop" == fliptop <[EMAIL PROTECTED]> writes:
>
> fliptop> i have found that using the HTTP_USER_AGENT environment
> fliptop> variable instead of ip address solves the problem with proxy
> fliptop>
> "fliptop" == fliptop <[EMAIL PROTECTED]> writes:
fliptop> i have found that using the HTTP_USER_AGENT environment
fliptop> variable instead of ip address solves the problem with proxy
fliptop> servers and the md5 hash. anyone ever tried this as a simple
fliptop> workaround?
Nobody with a
> >
> >> -----Original Message-
> >> From: Jon Robison [mailto:[EMAIL PROTECTED]]
> >> Sent: Friday, November 16, 2001 10:40 AM
> >> To: [EMAIL PROTECTED]
> >> Cc: Jonathan E. Paton; [EMAIL PROTECTED]
> >> Subject: Re: Doing Authoriza
gt;
> >> -----Original Message-
> >> From: Jon Robison [mailto:[EMAIL PROTECTED]]
> >> Sent: Friday, November 16, 2001 10:40 AM
> >> To: [EMAIL PROTECTED]
> >> Cc: Jonathan E. Paton; [EMAIL PROTECTED]
> >> Subject: Re: Doing Authoriza
1 10:40 AM
>> To: [EMAIL PROTECTED]
>> Cc: Jonathan E. Paton; [EMAIL PROTECTED]
>> Subject: Re: Doing Authorization using mod_perl from a programmers
>> perspective
>>
>>
>> fliptop wrote:
>> >
>> > Jon Robison wrote:
>> > >
n [mailto:[EMAIL PROTECTED]]
> Sent: Friday, November 16, 2001 10:40 AM
> To: [EMAIL PROTECTED]
> Cc: Jonathan E. Paton; [EMAIL PROTECTED]
> Subject: Re: Doing Authorization using mod_perl from a programmers
> perspective
>
>
> fliptop wrote:
> >
> > Jon Robison wro
fliptop wrote:
>
> Jon Robison wrote:
> >
> > The most relevant section for you is the Ticket system he describes. (I
> > believe the section header says something about Cookies, but you'll know
> > you have the right one when you see TicketAccess.pm, TicketTools.pm, and
> > TicketMaster.pm. One
>
> > my point
> > was that this solves the problem of using the ip address in
> the md5 hash
> > when the client is behind a proxy server.
>
> This does not solve the problem: IP address of users behind
> Proxy is not
> unique. The User Agent is not unique either. Using User Agent solves
> n
Joe Breeden wrote:
>
> How does this work in an environment with two (or more) computers with the
> exact same configuration, and probably the same HTTP_USER_AGENT behind the
> same proxy? How do you know that one user isn't using another users session?
you don't. the session hijacker still wou
If it compiles - Ship It!
Aranea Texo
> -Original Message-
> From: fliptop [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, November 15, 2001 4:50 PM
> To: Jon Robison
> Cc: Jonathan E. Paton; [EMAIL PROTECTED]
> Subject: Re: Doing Authorization using mod_perl from a programmers
&g
Jon Robison wrote:
>
> The most relevant section for you is the Ticket system he describes. (I
> believe the section header says something about Cookies, but you'll know
> you have the right one when you see TicketAccess.pm, TicketTools.pm, and
> TicketMaster.pm. One nice addition is the ability
Jonathon,
I am doing exactly this also. What works is this:
Get a copy of "Writing Apache modules with perl and C" and read it.
The most relevant section for you is the Ticket system he describes. (I
believe the section header says something about Cookies, but you'll know
you have the right on
"Jonathan E. Paton" <[EMAIL PROTECTED]> writes:
> Please don't flame me, I'll go away... honest :P
I wonder if you're trying to do too much too soon?
If you're concerned about hosting then *gulp* PHP might server you
better. I rent a dedicated server because I want absolute control and
the abi
> Seemingly I can do Apache handlers though, so I *might* be
> okay.
If you look at http://perl.apache.org/guide/, there's information on how to
determine if you're really running mod_perl or not. If you can get a
PerlHandler directive to work, you have mod_perl.
> I rather ambigously asked the
Hi,
> > Perrin Harkins wrote:
> >
> > 2. Do most hosting companies allow
> > authentication/authorization handlers? (Using
> > HostRocket at the moment).
>
> Most hosting companies don't allow mod_perl.
>
I had fears about that one, since I thought Perl might not
mean mod_perl - as I know mo
> 1. Can this be done (nicely) as a
> authentication/authorization handlier?
Sure, or you could do it as part of another phase if it's easier for you.
There are good exmples on CPAN or in the Eagle book.
> 2. Do most hosting companies allow
> authentication/authorization handlers? (Using HostRo
Hi there,
On Wed, 14 Nov 2001, [iso-8859-1] Jonathan E. Paton wrote:
> I am trying to create a website [snip]
> NB - Whilst my preferred answer to these questions is a
> coded solution, [snip]
We like people to think for themselves on this list. :)
> I'm sure I've missed a few questions...
Re
22 matches
Mail list logo
