Re: A modest proposal for access authentication

Martin Hamilton <M.T.Hamilton@lut.ac.uk>

Mail folder: WWW Talk Jul-Oct 1993
Next message: Marc Andreessen: "Re: Access Authorization"
Previous message: Erik Ostrom: "Re: A modest proposal for access authentication"
In-reply-to: Erik Ostrom: "Re: A modest proposal for access authentication"

Date: Fri, 17 Sep 1993 14:58:56 +0100 (BST)
From: Martin Hamilton <M.T.Hamilton@lut.ac.uk>
Subject: Re: A modest proposal for access authentication
To: Erik Ostrom <eostrom@gac.edu>
Cc: www-talk@nxoc01.cern.ch
In-reply-to: <9309171346.AA03283@gac.edu>
Message-id: <Pine.3.07.9309171456.H13654-a100000@avarice>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: M.T.Hamilton@lut.ac.uk
Status: RO

Erik said:

> > > a) add a new kind of URL:    FTPU://host/path
> > >    this URL is like FTP: except that it assumes that the user will
> > > supply a user name and password, i.e., not anonymous access
> > 
> > how about <ftp://martin@genie.lut.ac.uk/whatever> ?
> 
> Except that if you give me this URL, I get logged in as martin
> (assuming I know your password).  The FTPU scheme says "log in as
> yourself".  So you could have data readable by both martin and
> eostrom, and point to it with the URL
>     <FTPU://genie.lut.ac.uk/whatever>
> and both you and I could get at it without my having to know your
> password or vice versa.

Sure, point taken.  I was really thinking about the case where
you want to share ftp "accounts" - e.g. a guest ftp group in the
wuarchive ftpd.  Sorry my brain's very frazzled today :-)