Subject:
|
Re: E-mail authentication during posting
|
Newsgroups:
|
lugnet.admin.nntp
|
Date:
|
Mon, 18 Jun 2001 13:11:49 GMT
|
Viewed:
|
521 times
|
| |
|
|
Matthew Miller wrote:
>
> Iain M Barker <imb@clara.net> wrote:
> > A public news server that I use allows people to connect and read messages
> > freely, but requires a username/password to post, so it shouldn't be
> > unfeasible to do that here. You'd still need to do some additional checking
> > to ensure the username matched the sender's name, though.
>
> It's that second part that's tricky. The first part doesn't help, because
> once logged in as anybody, you can post as anybody else.
Do we have to worry that much about that? I think the primary concern is
to have a reasonable way to block posting by unauthorized folks. If you
abuse your priviledges, your NNTP ID/password would be revoked.
--
Frank Filz
-----------------------------
Work: mailto:ffilz@us.ibm.com (business only please)
Home: mailto:ffilz@mindspring.com
|
|
Message has 2 Replies:
 | | Re: E-mail authentication during posting
|
| (...) It's already been proven that revoking priviledges doesn't work. Whatever fix is put in needs to address the problem as much as possible before it gets to the revokation point, IMHO. Sure you can revoke an ID/password but what is to stop them (...) (23 years ago, 18-Jun-01, to lugnet.admin.nntp)
|
Message is in Reply To:
13 Messages in This Thread:
  
- Entire Thread on One Page:
- Nested:
All | Brief | Compact | Dots
Linear:
All | Brief | Compact
This Message and its Replies on One Page:
- Nested:
All | Brief | Compact | Dots
Linear:
All | Brief | Compact
|
|
|
|
