Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 64669 invoked from network); 25 Jan 2006 12:14:29 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 25 Jan 2006 12:14:29 -0000 Received: (qmail 42046 invoked by uid 500); 25 Jan 2006 12:14:19 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 41095 invoked by uid 500); 25 Jan 2006 12:14:16 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 41080 invoked by uid 99); 25 Jan 2006 12:14:16 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 25 Jan 2006 04:14:16 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: local policy) Received: from [200.142.85.13] (HELO mercurio.getnet.com.br) (200.142.85.13) by apache.org (qpsmtpd/0.29) with SMTP; Wed, 25 Jan 2006 04:14:15 -0800 Received: (qmail 27622 invoked from network); 25 Jan 2006 09:51:19 -0200 Received: from 200-158-11-70.dsl.telesp.net.br (HELO ?192.168.0.123?) (200.158.11.70) by mercurio.getnet.com.br with SMTP; 25 Jan 2006 09:51:19 -0200 Mime-Version: 1.0 (Apple Message framework v623) In-Reply-To: References: <83b6b250eea8c29c787ab4aca17566d5@raa.adv.br> <4e3d4e5038317ea63d39938f885ddd31@raa.adv.br> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <2b6a168c044f63cdd98626c39f628ecd@raa.adv.br> Content-Transfer-Encoding: 7bit From: info.raa Date: Wed, 25 Jan 2006 10:14:51 -0200 To: users@httpd.apache.org X-Mailer: Apple Mail (2.623) X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] path X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N Joshua, Tks for the reply. I get it, and ur right. i'll try someother solution for thar matter. See you soon. Kbl_master On 24 de Jan de 2006, at 5:15 PM, Joshua Slive wrote: > On 1/24/06, info. raa wrote: >> Thanks for the reply. >> It is really a security measure, since i'm developing an erp with >> mysql. >> Do you know how it is done? I dont want to bookmark any pages or so. >> Your last solution works right away. Thanks. > > Why shouldn't they be able to bookmark pages? I hate web apps that > force things like that on me. At worst, you should just use a session > id in the url and redirect to an intro page if the session is expired. > >> Can i ask some other thing? >> Is there anyway to prevent the same user/password to be accepted by >> the >> server. Or one setup of user/password can be use like for 10 people or >> so? > > Using HTTP Basic auth? No. There are no such controls in apache. > You'd need to monitor the logs and lock out abused accounts. > > If you are rolling your own sessions (using cookies of some kind), > then it is up to your application to track this. > > Joshua. > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP Server > Project. > See for more info. > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org > " from the digest: users-digest-unsubscribe@httpd.apache.org > For additional commands, e-mail: users-help@httpd.apache.org > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org