Hosting Provided By

Prevent security bypass

From: Chris Neil <Chris.Neil(at)abs-ltd.com>
Date: Tue Feb 04 2003 - 11:59:41 EST

I am new to this mailing list and so hope this conforms to the guidelines as I read them.

How do people address the issue of non-authenticated users requesting html pages directly from a site without logging in?

FYI. This is an IIS server. Our asp pages check the user is logged in, but with html pages we cannot.
My only idea so far is to convert all our html pages to asp. Is there anything less drastic?

Chris Neil
Security Officer
Chris.Neil@abs-ltd.com

ABS
Tel: +44 (0) 1993 771221
Fax: +44 (0) 1993 775081

Received on Tue Feb 4 12:13:33 2003

This message: [ Message body ]
Next message: Ulrich P.: "Re: Prevent security bypass"
Previous message: rain forest puppy: "Re: [whisker] Whisker is not accecpting host file as Input"
Next in thread: Ulrich P.: "Re: Prevent security bypass"
Reply: Ulrich P.: "Re: Prevent security bypass"
Reply: Igor Guarisma: "Re: Prevent security bypass"
Reply: Kalyan Varma: "Re: Prevent security bypass"
Reply: Adam: "RE: Prevent security bypass"
Reply: sunzi: "Re: Prevent security bypass"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:48 EDT