To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.admin.nntpOpen lugnet.admin.nntp in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 Administrative / NNTP / 826
825  |  827
Subject: 
 Re: E-mail authentication during posting
Newsgroups: 
 lugnet.admin.nntp
Date: 
 Tue, 19 Jun 2001 08:14:53 GMT
Viewed: 
 502 times
  
"Kerry Raymond" <kerry@dstc.edu.au> wrote in message
news:GF5uAo.5x1@lugnet.com...

It would be nice if each NNTP message could carry its own authentication • in
some simple software-independent solution.

That's quite a neat idea, but as you say prone to risk of revealing the
password. I still think that using NNTP authentication will work, esp. if it
can be set up to allow reading with no authentication information, and if
posting without auth info generates the email as it does now, or just
refuses the post (the latter option could be user specified, I can see a
nasty risk in this new system where the Lugnet server is used to flood
someone with email by somebody else spoofing their name and email address
and posting like mad, unless Todd has already put in a limiter such that
after X messages within Y minutes a summary message is posted every Z
minutes listing all the articles to be authorized in period Y). I favour
NNTP because I can easily filter read messages and also tag interesting
threads, but this is getting to be a pain to post messages, if NNTP
authentication could be used I could set the ID and password for my account
in my news reader and just continue as I always have done.

Dan



Message has 1 Reply:
  Re: E-mail authentication during posting
 
(...) Some tricks could be played to make it more secure. One would be to scan the message for the user's password and if it found it, but it didn't seem to be part of an authenticator, bounce the message. It could also use a fuzzy match for the (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp)

Message is in Reply To:
  Re: E-mail authentication during posting
 
(...) It would be nice if each NNTP message could carry its own authentication in some simple software-independent solution. One way that might work (for LUGnet members anyway) would be to search the message body for the string (say): (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp)

8 Messages in This Thread:



Entire Thread on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact

This Message and its Replies on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact
    
Custom Search

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR