Andy Shellam (Mailing Lists) wrote: > > If you requested the full URL that's passed to the poller back-end, > you'd find it extremely difficult to decipher it without the > s3_class.inc.php file (as this is what the client front-end does) and to > the average Joe it'd be a load of figures and numbers (sure you could > base64 decode the relevant part of it, but it'd mean nothing without the > s3_class.inc.php.) >
Correct me if I'm wrong, but s3_class.inc.php is publicly available, no? Either way, securing against "the average Joe" is neither difficult nor sufficient. Just worth considering. -- Andreas Ericsson [EMAIL PROTECTED] OP5 AB www.op5.se Tel: +46 8-230225 Fax: +46 8-230231 ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null