[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: RFS: schooltool



On Mon, Sep 06, 2004 at 02:14:33PM +0200, Petter Reinholdtsen wrote:
> [Brian Sutherland]
> > The default config accepts all connections from web browsers on port
> > 7080 and clients on 7001, so probably should be behind a firewall.
> 
> The default config should use TCP-wrapper in this case, to make it
> easy to limit the access using /etc/hosts.{allow,deny}.
> 

Unfortunately this is not trivial(with inetd or xinetd) and would
probably need changes to the source, which I could propose to upstream.

However, connections must be authenticated with a username/password
before the user can progress beyond the first web page. Additionally the
daemon is run as the schoolbell user. SSL is also an option.

Would this be enough for the testing version?

-- 
Brian Sutherland



Reply to: