Jacqui Caren replied to me in stead of the list: > Frank Maas wrote: >>> I would like to know if there is a module that allows me to capture >>> the currently logged in user name of a client accessing a Apache web >>> server. >> >> >> Let me get this straight... You are looking for a module _on the >> Apache server_ that extracts the name under which the user logged in >> on the _client_? This would mean that the browser the client uses, >> forwards this information to the server. I think no browser (should) >> do this and even if it did, the information you get (on the server) >> cannot be trusted. > > See perldoc Net::Ident > > but I agree with your last comment. > > However I thought apache could use ident itself, but it is switched > off because > > 1) almost anyone that runs it disables access across the internet > > 2) item 1) causs log delays when trying to connect (timeout's) > > 3) NAT, rorating DCHP and proxies etc can cause incorrect results... > > 4) it is easily faked. > > 5) some finger/ident/... servers are used as traps for hackers... > > Basically it is possible but not usefull or advisable except in > some intranet applications and even then I have seen it go horribly > wrong because someone replaced a hub with a 'walled router, 'killing' > the web server - and before you ask No I did not implement the > app that went wrong - I just was the 'bod' to be at the customer > site when SHTF and was asked to "help!" :-) > > There are some windows (SMB) specific Web authen modules for apache > that may be what you are looking for - again recommended intrane > only... > > Jacqui
-- Reporting bugs: http://perl.apache.org/bugs/ Mail list info: http://perl.apache.org/maillist/modperl.html
