Here is the solution that were doing...
Host A redirect to Host B with a unique encrypted key, like a MD in the
URL
Host B does its work and redirects the user back with the same key and
another private key
If the key is changed then the request is assumed to be insecure.
If the private key does not match, the request is assumed to be
insecure.
Make sense ?
-Sam
Cezar Totth wrote:
>
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
