My question arises from trying to secure resources, documents or applets.
If after validation through a servlet and the secure resource is displayed
as Jason Hunter's example suggests what prevents anyone then from simply
looking at the source code and access the secure resource next time?
Are there preventive measures in LDAP in web servers which only allows
objects-such as applets with only the same IP address to call one another?
I'm guessing there are but I don't really know.
-Tom
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
