Re: Security stumper [mildly OT]

This WebDNA talk-list message is from

2004

It keeps the original formatting. numero = 57197
interpreted = N
texte = you can't use the referrer tag since that's easy to spoof.passwords would be the best way.you could also have 1 global password for everyone, but then what happens if an employee gets fired?if they are a bank then they should already be used to high security.so why not create a system whereby a new password gets generated every day, or every week, or upon demand. then that password would get sent to everyone somehow. this way its a global password for everyone so you don't manage users passwords.there are hardware systems out there used by big banks and medical corporations that use electronic key rings. the employees actually carry these things around with them and every time they need to log into their system they have to look at the LCD on their key chain to find out what the new password is. that system uses a previously created password list that is stored in the key chain and in the system. the key chain always shows the next number, and the system always knows to disallow any number already used.maybe you can come up with something like that.personally i never think that anything is impossible... for me impasse = creative thinking.Matt PerosiPsi Prime, Inc.ijo.comnj-singles.comPhil Herring wrote:>Hi all,>>I have a client who is about to launch a site that supports an internal>promotion for a bank.>>The bank wants to secure the site, but they won't host it on their intranet.>>Here are the parameters:>>- can't use passwords, way too many users>>- not all the users are on the same network, so screening by IP won't work>>- I considered screening by referrer (they can click a link on their>intranet to get to the site) but that would block people using bookmarks>>>I just told my client this is impossible. But have I missed something?>>>>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >Web Archive of this list is at: http://webdna.smithmicro.com/>> >-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

Re: Security stumper [mildly OT] ( Tim Robinson 2004)
Re: Security stumper [mildly OT] ( John Peacock 2004)
Re: Security stumper [mildly OT] ( Matthew A Perosi 2004)
Security stumper [mildly OT] ( Phil Herring 2004)

you can't use the referrer tag since that's easy to spoof.passwords would be the best way.you could also have 1 global password for everyone, but then what happens if an employee gets fired?if they are a bank then they should already be used to high security.so why not create a system whereby a new password gets generated every day, or every week, or upon demand. then that password would get sent to everyone somehow. this way its a global password for everyone so you don't manage users passwords.there are hardware systems out there used by big banks and medical corporations that use electronic key rings. the employees actually carry these things around with them and every time they need to log into their system they have to look at the LCD on their key chain to find out what the new password is. that system uses a previously created password list that is stored in the key chain and in the system. the key chain always shows the next number, and the system always knows to disallow any number already used.maybe you can come up with something like that.personally i never think that anything is impossible... for me impasse = creative thinking.Matt PerosiPsi Prime, Inc.ijo.comnj-singles.comPhil Herring wrote:>Hi all,>>I have a client who is about to launch a site that supports an internal>promotion for a bank.>>The bank wants to secure the site, but they won't host it on their intranet.>>Here are the parameters:>>- can't use passwords, way too many users>>- not all the users are on the same network, so screening by IP won't work>>- I considered screening by referrer (they can click a link on their>intranet to get to the site) but that would block people using bookmarks>>>I just told my client this is impossible. But have I missed something?>>>>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >Web Archive of this list is at: http://webdna.smithmicro.com/>> >-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Matthew A Perosi

DOWNLOAD WEBDNA NOW!

Re: Security stumper [mildly OT]

2004

Top Articles:

Related Readings: