Re: [htdig] Indexing proteted servers


Subject: Re: [htdig] Indexing proteted servers
From: Paul DuBois (paul@snake.net)
Date: Thu Dec 02 1999 - 12:03:27 PST


At 1:37 PM -0600 12/2/99, Geoff Hutchison wrote:
>At 5:57 PM +0100 12/2/99, spantke@cubic.de wrote:
>>How to index an Apache server that requires UserID/Password authentication?
>
>See http://www.htdig.org/htdig.html
>
>At 11:42 AM -0600 12/2/99, Paul DuBois wrote:
>>Wouldn't that essentially compromise security, given that you would
>>then have the protected server contents sitting about somewhere in
>>an htdig database?
>
>And this differs from having the contents around in HTML files or in
>another database?

Sure. It might very well differ, yes.

>
>Presumably,

I was not, and saw no reason to make, that presumption, particularly
since the question didn't specify whether or not the protected server
was the poster's own.

>if you want to index a protected server, you're making some attempt
>to protect the database and the search forms as well. If you're not,
>you're probably aware that you're doing this. You can't just blindly
>index a protected server--you must supply the authentication to the
>indexer.

-- 
Paul DuBois, paul@snake.net

------------------------------------ To unsubscribe from the htdig mailing list, send a message to htdig-unsubscribe@htdig.org You will receive a message to confirm this.



This archive was generated by hypermail 2b28 : Thu Dec 02 1999 - 12:15:57 PST