You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@cocoon.apache.org by Stefano Mazzocchi <st...@apache.org> on 2004/03/31 19:13:27 UTC

Re: Security in Cocoon blocks

Gianugo Rabellino wrote:

> Well, this is not the case actually. I would ship an _open_ Linotype 
> (yeah, no username/password) and instruct people to protect it using 
> their favourite strategy. This is, after all, what well-behaved Apache 
> applications do: auth belongs to <Directory> or .htaccess.

This is what I do for our webapps on simile.mit.edu and I think it makes 
perfect sense, but this different from what Ugo was talking about.

-- 
Stefano.