Re: Can I do this with a firewall? nat with Password!

From: roberson@xxxxxxxxxxxx (Walter Roberson)
Date: Sun, 17 Sep 2006 22:40:09 GMT

In article <Ir-dncA4-bfJJZDYRVnyrQ@xxxxxx>,
Adrian <Adrian@xxxxxxxxxxxxxxxxxxxx> wrote:

We have a URL and access to it is controlled by source IP
address, as many of our users increasingly have dynamic IP address we are
looking for a quick solution without changing the current system which is
hosted off site.

Your existing system very likely already has a username / password
mechanism available. Any reputable hosting company would support it.

You should decide, though, on what level of security is appropriate
for the username and password combinations. Unless the name and
password is just intended to be a small deterent, then you probably
don't want them going out "in the clear". Standard firewall
authentication for http URLs uses plaintext, so you'd probably be
wanting to switch to https. You may wish to consider leaving your
home page as http but have a link or a redirection to https .
.

Follow-Ups:
- Re: Can I do this with a firewall? nat with Password!
  - From: Adrian

References:
- Can I do this with a firewall? nat with Password!
  - From: Adrian

Prev by Date: Re: What version of ZOneAlarm fastest with XP SP2
Next by Date: Re: Recommendations for Port/Device Lockdown software
Previous by thread: Can I do this with a firewall? nat with Password!
Next by thread: Re: Can I do this with a firewall? nat with Password!
Index(es):
- Date
- Thread

Relevant Pages

Re: email spam
... "Ant" wrote in message ... >> They have encoded the URL, in an effort to get it through a scanner. ... > is sent with the http request and could confirm to the spammer that you ... is a username or username/password combination n the format: ...
(alt.computer.security)
Re: Secure access to RPC over HTTPs
... >1) We would like some kind of additional authentication beside username + ... >to successfully configure RPC over HTTP + the require user certificate option ... I understand a setup with RSA Secure ID is out of the ... Is it possible to force the ISA ...
(microsoft.public.exchange.admin)
Re: Can I do this with a firewall? nat with Password!
... Thanks, and yes the current system is username and password protected, the ... defence. ... this easily done in a firewall or should I put a NAT router behind it? ... home page as http but have a link or a redirection to https. ...
(comp.security.firewalls)
Re: Automate screen scraping: How to programmically "push" a Login button on another web page?
... You'll have to use HttpWebRequest to do a HTTP POST passing values for the IDs of the username and password fields. ... I'd suggest downloading Fiddler to see the HTTP traffic and it'll make what's being passed over the HTTP protocol seem so much more clear. ...
(microsoft.public.dotnet.framework)
Re: Bug in http package
... Are you sure it is supported by the http package itself? ... The server indicates that it needs username and password as part of a basic authentication with the following header: ... http::geturl does not refresh the header information in the second round. ...
(comp.lang.tcl)