On 9/17/06, Chris Kuethe <[EMAIL PROTECTED]> wrote: > > On 9/17/06, Bryan Irvine <[EMAIL PROTECTED]> wrote: > > Or for that matter logged in. Correct me if I'm wrong on this but if you > > were to have some php or other script that runs from an http session > > wouldn't the session originate from the http server itself and therefore > not > > allow even authenticated users to pass? > > $_SERVER['REMOTE_IP'] > $_SERVER['REMOTE_USER']
Yes but does authpf have a mechanism for understanding this? I've never used authpf, but my limited understanding is that user makes ssh connection, authpf looks at ip of connecting machine and adds it to a table. Can you tell authpf to authorize a different ip than that of the original connection (in this case the webservers own ip)? A quick scan of the man page says no, but I'm no authpf expert. --Bryan
