PS: Basic Apache authentication using cookies
Michael James
michael at james.st
Sat Mar 9 02:05:05 EST 2002
A bit of searching has found an Apache module
that does authentication using cookies:
http://www.frogdot.org/mod_auth_mda
Everything else I saw was pre apache 1.3
and wanted to be compiled in statically.
This compiles as a shared library.
It has the added security of including the IP address of the client,
so cookies are not transferable.
It hashes the cookie to avoid tampering.
Cookie can be encrypted.
CGI and java servelet tools are provided to set the cookies.
Anyone used this?
michaelj
--
A right not exercised is a privilege
a privilege not exercised is illegal.
Michael James michael at james.st
8 Brennan St Phone: +61 2 6247 2556
Hackett, ACT 2602 Mobile: +61 4 1747 4065
AUSTRALIA Fax: +61 2 6278 0011
More information about the linux
mailing list