From: Clive D.W. Feather (clive@demon.net)
Date: Mon Jan 22 2001 - 03:57:19 CST
Seth Breidbart said:
> My general feeling is that arbitrary tokens are better than IP
> addresses (for all the reasons Brad gives); however, IP addresses do
> have some advantages in combatting abuse. More important, however, is
> the fact that IP addresses are the most common tokens now used, and I
> wouldn't want to make existing software nonconformant for using them.
>
> Hence, I'd support a statement that some sort of tokens (possibly IP
> addresses) SHOULD be used, and a token that maps to the user/session
> only via private information Ought to be used.
I've completely lost track what wording we're arguing about. Could someone
please repost it, after which could Brad please post the changes that would
make him happy ?
-- Clive D.W. Feather | Work: <clive@demon.net> | Tel: +44 20 8371 1138 Internet Expert | Home: <clive@davros.org> | Fax: +44 20 8371 1037 Demon Internet | WWW: http://www.davros.org | DFax: +44 20 8371 4037 Thus plc | | Mobile: +44 7973 377646