[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] CGI guru

Subject: Re: [cobalt-users] CGI guru
From: "Robert Davis" <rdavis@xxxxxxxxxxx>
Date: Wed Feb 23 13:59:29 2000

Ahoy Manuel

You ask:

> ... can I trust if the REMOTE_USER is set to "admin"
> that it is the admin user ?

Think of it this way:

You can trust that it is admin if it was the true admin who logged in. 

You cannot trust that it was an admin named Manuel Manitu who 
logged in. It may have been E. Vilhacker. But, chances are, E. 
Vilhacker would come via FTP or Telnet, rather than via GUI.
For one thing, the GUI limits what he can do.

In other words, you may be looking at the head of the bull, probing 
for weak spots. He is much softer in other places.

Aloha
Davis

References:
- [cobalt-users] CGI guru
  - From: manitu

Prev by Date: Re: [cobalt-users] Perl newbie
Next by Date: RE: [cobalt-users] FW: RaQ2 Restore Problems
Previous by thread: [cobalt-users] CGI guru
Next by thread: [cobalt-users] SSH help needed please

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index