[rrd-users] Re: security question for .rrd

mode arc modearc at hotmail.com
Wed Apr 17 05:36:39 MEST 2002





>From: Olivier Nicole <Olivier.Nicole at ait.ac.th>
>To: modearc at hotmail.com
>CC: rrd-users at list.ee.ethz.ch
>Subject: Re: [rrd-users] security question for .rrd
>Date: Wed, 17 Apr 2002 10:22:44 +0700 (ICT)
>
> > how can I secure my page, for instance 
>http://www.sample.com/mrtg-rrd.cgi
> > since it will load all the html pages. Cause for every port on my 
>switches
>
>What our ISP did is set one page per user and install standard HTTP 
>password.
>
>Olivier


ok,  thank you. what if the user is already login and he tried to viewsource 
the page. definitely he will see the cgi script which generate the page. so, 
  he can bypass HTTP password and go directly to the page and be able to see 
all the graphs.

im adding an http_referer to the script but i can only view the txt files.

any suggestions or recommendations will be highlt appreciated.


mode



_________________________________________________________________
MSN Photos is the easiest way to share and print your photos: 
http://photos.msn.com/support/worldwide.aspx


--
Unsubscribe mailto:rrd-users-request at list.ee.ethz.ch?subject=unsubscribe
Help        mailto:rrd-users-request at list.ee.ethz.ch?subject=help
Archive     http://www.ee.ethz.ch/~slist/rrd-users
WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi



More information about the rrd-users mailing list