| Subject | Re: [Firebird-Architect] Can we, can we, can we????... |
|---|---|
| Author | Jim Starkey |
| Post date | 2005-06-18T11:23:34Z |
Claudio Valderrama C. wrote:
be spoofed? Somebody can always forge an IP packet with a bogus sender
address, but the response is going to go there, not the forger, and will
get appropriately dropped on the floor.
But certainly IP address is no way to identify a user, ergo request tokens.
>And I forgot to say that IP addresses aren't reliable since you can spoofI'm not disagreeing with your point, but are you sure that sockets can
>them with raw sockets, so a token that's hard to guess seems the best
>alternative.
>
>
>
be spoofed? Somebody can always forge an IP packet with a bogus sender
address, but the response is going to go there, not the forger, and will
get appropriately dropped on the floor.
But certainly IP address is no way to identify a user, ergo request tokens.