Louis K on 28 Aug 2015 06:26:39 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Securing Web Site for External Traffic


Thanks, Thomas!

> In reality though, really, what you're doing is punching a whole in your
> wall just waiting for someone else to go all hulk on it.
Yeah I know I'm potentially playing with fire here; just curious if
there are other options I don't know about that are more secure than
http auth.

> even if you put a username/password on it, you'll either never enter it
> on your phone because it's too long and hard (it's a secure and long
> password, right?) or you will have something that says 'use cookie to
This actually isn't an issue: my phone's browser remembers the http
passwords for a while without cookies. I was surprised by this feature
but use it regularly and find it very convenient. With http auth, I'm
mostly worried about someone going 'all hulk on it'.

> But that's like... just my opinion, man...
I asked for opinions so no judgement here!
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug