|
|
|
|
|
|
|
| |
|
|||||
| |
|
|
|
|
|
|
| |
||||||
|
|
|
|
||||||||
| [SurgeMail List] Re: Time Zone issue not corrected with lastest build - Mon, 09 Nov 2009 10:56:16 +1300 | |||||||||||
|
<html>
<head>
<style>
.sw_message P{margin:0px;padding:0px;}
.sw_message {FONT-SIZE: 12pt;FONT-FAMILY:Tahoma,Arial,Helvetica,sans-serif;background:white;}
</style>
</head>
<body class=3d"sw_message">
The best way actually to do this is to use the same autologin mechanism that=
is used when "auto logging in" between the various netwin products. <d=
iv>eg. webmail uses when logging in to user.cgi.</div><div><br></div><div>It=
is documented (albeit slightly cryptically) here:</div><div>http://www.netw=
insite.com/webmail/admin_adv.htm</div><div><br></div><div>Basic concept is t=
hat you pass the encoded password to be stored in surgemail usign the putp P=
OP command (preferred) or to save the file directly on disk. This gives you =
an "id" token which you pass out in your urls so that the password is never =
sent in plain text. </div><div><br></div><div>Have a read of the "WebMa=
il <--> External Program or Single Sign On, SSO" section in the above pag=
e.</div><div><br></div><div>Let me know if you cannot get it to work or have=
specific questions.</div><div><br></div><div>Marijn<br><div><br></div><div>=
<br _moz_editor_bogus_node=3d"TRUE" _moz_dirty=3d""><br><br>--- Original mes=
sage --- <br>Subject: Passing Passwords securely <br>From: <surgemail-l=
ist@netwinsite.com> <br>To: <(none)> <br>Date: 14/05/2009 4:23 AM<br><b=
r>I would like to pass a password from my client to login to the mail admin =
securely -Such as this -<a target=3d"_blank" href=3d"https://mail.yourdomain=
..com:7443/cgi/user.cgi?username=3dtony@mydomain.com&password=3dWeakpassw=
ord.">https://mail.yourdomain.com:7443/cgi/user.cgi?username=3dtony@mydomain=
..com&password=3dWeakpassword.</a>It will then automatically login the us=
er.But would it be possible to use an encrypted password that the server wil=
l read if only from a certain IP? Such as the user clicks on a link from a c=
ontrol panel?Such as -<a target=3d"_blank" href=3d"https://mail.yourdomain.c=
om:7443/cgi/user.cgi?username=3dtony@mydomain.com&password=3drandompassw=
ord">https://mail.yourdomain.com:7443/cgi/user.cgi?username=3dtony@mydomain.=
com&password=3drandompassword</a><br>or have it at least cloak the passw=
ord in the URL<br></div></div>
</body></html>
------=_NextPart_surgeweb_51614917_mpa=--
|
||||||||||
Simple index of items from the news group
| Netwin -- Email Server Software | SurgeMail -- Mail Server Software, SMTP, POP, IMAP | |
| SurgeWeb -- Web Mail Client | DBabble -- Chat Server, Instant Messaging | SurgeFTP -- Ftp Server Software |