Re: [OT] Application Security

2003-06-12 Thread Paul Thomas
On 11/06/2003 14:15 Denis Avdic wrote: What our site is basically about is that people can access some information retrieved from a database. This person registered and basically went and accessed all of the profiles stored on our server, sequentialy, using an automated process (2 per

Re: [OT] Application Security

2003-06-11 Thread Paul Thomas
On 10/06/2003 17:47 Denis Avdic wrote: Hello, This is really off topic, but since everyone is working in similar conditions I though I'd ask you all a question. How is everyone handling security in your applications? More specifically, we have a site where someone violated our acceptable use

Re: [OT] Application Security

2003-06-11 Thread Denis Avdic
Paul Thomas wrote: On 10/06/2003 17:47 Denis Avdic wrote: Hello, This is really off topic, but since everyone is working in similar conditions I though I'd ask you all a question. How is everyone handling security in your applications? More specifically, we have a site where someone violated

RE: [OT] Application Security

2003-06-11 Thread El Harouchi, Jaafar [IT]
someone else will give a more complete answer). -jaafar -Original Message- From: Denis Avdic [mailto:[EMAIL PROTECTED] Sent: Wednesday, June 11, 2003 9:15 AM To: Struts Users Mailing List Subject: Re: [OT] Application Security Paul Thomas wrote: On 10/06/2003 17:47 Denis Avdic wrote

Re: [OT] Application Security

2003-06-11 Thread Adam Hardy
Your problem is that you are seeking to clamp down on a user's behaviour, rather than implement any particular kind of security roles or authorization scheme, is that correct? Rather similar to monitoring posts on a message board to make sure posts are on topic, not obscene, non-abusive etc

Re: [OT] Application Security

2003-06-11 Thread Max Cooper
] To: Struts Users Mailing List [EMAIL PROTECTED] Sent: Wednesday, June 11, 2003 6:15 AM Subject: Re: [OT] Application Security Paul Thomas wrote: On 10/06/2003 17:47 Denis Avdic wrote: Hello, This is really off topic, but since everyone is working in similar conditions I though I'd ask

[OT] Application Security

2003-06-10 Thread Denis Avdic
Hello, This is really off topic, but since everyone is working in similar conditions I though I'd ask you all a question. How is everyone handling security in your applications? More specifically, we have a site where someone violated our acceptable use policy and basically tried to retrieve

RE: [OT] Application Security

2003-06-10 Thread Chip Paul
, 2003 11:48 AM To: Struts Users Mailing List Subject: [OT] Application Security Hello, This is really off topic, but since everyone is working in similar conditions I though I'd ask you all a question. How is everyone handling security in your applications? More specifically, we have a site where