FTP "securing"
bscott at ntisys.com
bscott at ntisys.com
Thu Oct 9 12:13:02 EDT 2003
On 9 Oct 2003, at 11:07am, ken.lussier at zuken.com wrote:
> The patches are only available to customers who are on support contracts.
> The problem that we ran into was that using anonymous FTP allowed some of
> the smarter users to bookmark the location, then download patches after
> they went off maintenence.
Okay, so really, the whole FTP username/password thing is a red herring.
The real issue you're facing is that you're authenticating more then one
party (i.e., more then one customer) using the same username/password (to
the FTP server).
What you will need to do is create an authentication database which
assigns a unique set of credentials to each customer, so that you can
control their access on a per-customer basis.
--
Ben Scott <bscott at ntisys.com>
| The opinions expressed in this message are those of the author and do |
| not represent the views or policy of any other person or organization. |
| All information is provided without warranty of any kind. |
More information about the gnhlug-discuss
mailing list