Protect our objects directories with password (Wishlist)

Protect our objects directories with password // Wishlist

1  |  

alex

Oct 22, 1998, 5:54pm
A nice way of protecting our objects/textures from thieves would be having
them in a password protected directory (with htaccess or nsconfig) . i'm
sure this can be done easyly.

Alex

chris wickens

Oct 22, 1998, 9:10pm
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
Not if the server wont allow this feature (xoom, angelfire ect...)
[View Quote] <P>--
<BR>Chris Wickens
<BR>Quote: A feature is a bug with seniority.
<BR>______________________________________________
<BR>Personal Home Page: <A HREF="http://members.home.com/wicken">http://members.home.com/wicken</A>
<BR>ActiveWorlds name: rur
<BR>ICQ UIN: 183367
<BR>&nbsp;</HTML>

alex

Oct 22, 1998, 9:15pm
True, but the people who really need to have their work protected, because
it is their day job, will be on a "real" server......

=?iso-8859-1?q?eep=b2?=

Oct 22, 1998, 10:44pm
Not entirely...

[View Quote] > The AW cache structure is designed to keep people from extracting objects
> and images from their hard drive and stealing them

cdm

Oct 22, 1998, 11:23pm
One problem with the directory protection idea is that it is easily
bypassed. If you know the file name, then you can just append it to the
end of the directory and bingo, you have accessed the file.

The AW cache structure is designed to keep people from extracting objects
and images from their hard drive and stealing them, but it does not keep
people from finding out the names of at least some of the objects and
images.
--
REINSTATE PROTAGONIST!!!!!!!!!!!!!!!!

Alex <alex at mundosactivos.com> wrote in article <362fbc9a.0 at homer>...
> True, but the people who really need to have their work protected,
because
> it is their day job, will be on a "real" server......
>
>
>
>

klassi

Oct 22, 1998, 11:53pm
I may be wrong but I thought that Xoom didn't allow password protected
sites, think I saw it in their conditions of use..

Klassi
[View Quote] > Not if the server wont allow this feature (xoom, angelfire ect...)
>
[View Quote]

alex

Oct 24, 1998, 2:38pm
>One problem with the directory protection idea is that it is easily
>bypassed. If you know the file name, then you can just append it to the
>end of the directory and bingo, you have accessed the file.


Not true, at all
you will be asked a username / password to get the file

Alex

andras sarkozy

Oct 24, 1998, 8:42pm
Yeah, but then even the browser couldn't get it :o)

[View Quote] >
> Not true, at all
> you will be asked a username / password to get the file
>
> Alex

raven shadow

Oct 25, 1998, 5:54pm
sure it could , just set the object path as
http://logon:password at www.domain.com/~your_page/world_directory


[View Quote]

byte me

Oct 25, 1998, 10:30pm
But it still downloads the directory :)

[View Quote]

jw

Oct 26, 1998, 12:39am
you can do that with FTP! someone shold try that!

[View Quote] > sure it could , just set the object path as
> http://logon:password at www.domain.com/~your_page/world_directory
>
[View Quote]

raven shadow

Oct 26, 1998, 1:37am
I messed around , several months ago , with password folders in some space I
get thru my isp
and did a realy bang up job !! ( in other words ....even I couldn't get
access !! )
This is on an Apache Unix server , ANY acces requests for ANY files within a
passworded
folder requires the accessee either incorporate the logon/pw into the url
orl enters the info manually

If you want I can try and dig up the info on it and setup an example
passworded folder on my space




[View Quote]

raven shadow

Oct 26, 1998, 1:39am
with all due respect ..........



DUUHHH !!
of course you can ,or I wouldn't havve posted that info :-)
but it works or it wouldn't be a standard , now would it ?

uuummm never mind :-P~~


[View Quote]

jw

Oct 26, 1998, 9:57am
what info. you said http://logon:password at address woud me useful if it worked.
im saying that ftp://logon:password at adress works, and would work for this
situation

[View Quote] > with all due respect ..........
>
> DUUHHH !!
> of course you can ,or I wouldn't havve posted that info :-)
> but it works or it wouldn't be a standard , now would it ?
>
> uuummm never mind :-P~~
>
[View Quote]

raven shadow

Oct 26, 1998, 11:40am
yes both will work .
you can access a file ( or files ) in a passworded folder by including the
logon/pw as part of of the
http or ftp address .
BUT it is safer to have the aw browser access the objects thru the http
protocol.


[View Quote]

alex

Oct 26, 1998, 12:50pm
I am not sure if awb would accept that sort of path, and if it does, this
wouldn't help us, any one will be able to see the username and password from
his cache folder names and go there to download anything he wants


what would be needed for that sort of protection is a built in the browser
password protection

or another way to do it is stop giving the url in the folder names


Alex









>http://logon:password at www.domain.com/~your_page/world_directory
>
>

>

jw

Oct 26, 1998, 7:35pm
never seen it done through http

[View Quote] > yes both will work .
> you can access a file ( or files ) in a passworded folder by including the
> logon/pw as part of of the
> http or ftp address .
> BUT it is safer to have the aw browser access the objects thru the http
> protocol.
>
[View Quote]

dthknight

Oct 26, 1998, 9:01pm
It makes sense that it would work both through http and ftp... oh and BTW, at
least in 'create sound', AW doesn't accept ftp://ftp.ftpsite.com as a URL - it has
to start with http://, and thus you are praying that the ftp server has a web
server running on the same machine.

[View Quote] > never seen it done through http
>
[View Quote]

jw

Oct 26, 1998, 10:42pm
I know it makes sense, but ive never seen it implemented and dont knwo how to do it.

[View Quote] > It makes sense that it would work both through http and ftp... oh and BTW, at
> least in 'create sound', AW doesn't accept ftp://ftp.ftpsite.com as a URL - it has
> to start with http://, and thus you are praying that the ftp server has a web
> server running on the same machine.
>
[View Quote]

1  |  
Awportals.com is a privately held community resource website dedicated to Active Worlds.
Copyright (c) Mark Randall 2006 - 2024. All Rights Reserved.
Awportals.com   ·   ProLibraries Live   ·   Twitter   ·   LinkedIn