You are viewing a plain text version of this content. The canonical link for it is here.

Posted to apache-bugdb@apache.org by co...@apache.org on 1999/07/04 20:33:35 UTC

Re: mod_setenvif/4545: No way to limit access based on REMOTE_IDENT RFC1413 identd IdentityCheck

[In order for any reply to be added to the PR database, you need]
[to include <ap...@Apache.Org> in the Cc line and make sure the]
[subject line starts with the report component and number, with ]
[or without any 'Re:' prefixes (such as "general/1098:" or      ]
["Re: general/1098:").  If the subject doesn't match this       ]
[pattern, your message will be misfiled and ignored.  The       ]
["apbugs" address is not added to the Cc line of messages from  ]
[the database automatically because of the potential for mail   ]
[loops.  If you do not include this Cc, your reply may be ig-   ]
[nored unless you are responding to an explicit request from a  ]
[developer.  Reply only with text; DO NOT SEND ATTACHMENTS!     ]


Synopsis: No way to limit access based on REMOTE_IDENT RFC1413 identd IdentityCheck

State-Changed-From-To: open-analyzed
State-Changed-By: coar
State-Changed-When: Sun Jul  4 11:33:34 PDT 1999
State-Changed-Why:

In the Apache model, access checking occurs before
authentication and authorisation checking -- and all
of these occur before content handling.  So the
information should never reach a CGI script, for
instance, because the access decision should have
been made much earlier.

You might check out the mod_access_identd module, which
is available from <http://Web.MeepZor.Com/packages/>.