Plateforme Level Extreme
Abonnement
Profil corporatif
Produits & Services
Support
Légal
English
Business Objects separate from UI Question - hackers??
Message
De
01/09/2004 13:25:15
Bob Archer
Tampa, Floride, États-Unis
 
 
À
01/09/2004 11:28:00
Bonnie DeWitt
Geneva Systems Group
Ellensburg, Washington, États-Unis
Information générale
Forum:
ASP.NET
Catégorie:
The Mere Mortals .NET Framework
Titre:
Re: Business Objects separate from UI Question - hackers??
Divers
Thread ID:
00937993
Message ID:
00938456
Vues:
15
>Pretty simple, IMHO. ;)

So, your web service authentication is that a GUID is passed in as a paramter, and it that GUID is in your login table or such, then they are considered ok.

Just playing DA here... What if a "rouge" programmer was able to log into your system... then they would have the GUID to pass to your web services?

I assume you require SSL to access your web services so these GUID's can't be sniffed?

Also, you don't use an encrypted authentication ticket or anything?

BOb
Précédent
Suivant
Répondre
Fil
Voir

Click here to load this message in the networking platform