>I'm considering the problem of URL hijack
>
>Seems to me that, for really sensitive stuff, preventing general access and issuing dedicated access software which can only access one address offers a partial solution.
>
>The UT Navigator is just such software. Is it indeed that secure?
>
>If we couldn't browse the thread with a normal browser and the only possible way in was via the UTN, would that effectively protect the Thread from all forms of Web based attack? (assuming, for the time being, that no-one with access to the UTN chose to launch such an attack internally)
>
>Harry
My understanding about url hyjacks is that they are due to the methods used by Network Associates (internic) to change information associated with domain names. Network Associates uses email forms to change information about a domain name. These forms are very insecure and can be faked rather easily. If you don't go through Network Assocaites (they used to be the only way) then I think you are safe from url hyjacks. I always use register.com to register domain names. They have a really nice web based form for change information associated with domain names like the ip record and the mx record and so on. If you already register your domain with Network Associates you can switch the registar to register.com. They have info about this on their site.
I could be all wrong about url hyjacks, but in any case register.com kicks ass and network associates blows IMHO.
Rip Ryness
International Falls, MN