Hello everybody,
I need a few pointers on a project I'm working on.
Basically, I'm developing a cross platform web based (using Java) configuration
tool for a daemon I wrote (which runs on linux).
For an easier time and cross platform compatibility, I chose to write an applet
which will give the administrator the ability to configure the daemon.
My problem as I discovered was that applets are very limited in their abilities,
so I needed to have some kind of server side application, either a servlet
or a CGI script, or something along those lines.
The way that fits my needs the most is using an applet that opens a connection
to a special "controlling" daemon that will also run on the linux machine. That
new daemon will have power over the primary service and it will have the
permission to also change configuration files.
I basically need suggestions on how to:
1) secure the access to the applet by login
2) Be able to protect the exchange of data between the applet and the
controlling daemon that runs on the linux machine
3) limit access to only selected machines on the same LAN.
And finally, if anyone has any suggestion as to a better / more secure
way of doing this, I'd appreciate it.
ASP has been rules off (platform of the webserver is linux), and CGI,
well, I don't know (and been told it's somewhat limited).
I'd appreciate any suggestions.
Regards
Eli
