>From the code, it looks like admin is accessible via https *OR* localhost. I had thought localhost was a requirement by default since otherwise it seems too easy to break in to admin by just trying a bunch of passwords. Or is the advise to not use https in order to require localhost?
- [web2py] Admin security: https vs localhost pbreit
- [web2py] Re: Admin security: https vs localhost Massimo Di Pierro
- [web2py] Re: Admin security: https vs localhost pbreit
- [web2py] Re: Admin security: https vs localhost Massimo Di Pierro
- [web2py] Re: Admin security: https vs localhost cjrh
- [web2py] Re: Admin security: https vs localhost pbreit
- [web2py] Re: Admin security: https vs local... cjrh
- [web2py] Re: Admin security: https vs l... Ross Peoples
- [web2py] Re: Admin security: https... Ross Peoples
- [web2py] Re: Admin security: h... cjrh
- [web2py] Re: Admin securit... Ross Peoples
