[DAS] Re: DAS security
James Smith
js5 at sanger.ac.uk
Wed Sep 24 12:20:00 EDT 2003
On Wed, 24 Sep 2003, Lincoln Stein wrote:
> Hi,
>
> Just set the DAS server's authentication to refuse all requests except those
> from the bona-fide Ensembl IP address. It works in LDAS using Apache's
> standard authentication/authorization system, as well as Dazzle per Thomas'
> note below.
>
Lincoln,
The problem is that the IP restriction required in on the web-browser, NOT
on the EnsEMBL website...
DAS Server ---- EnsEMBL Website ---- Web browser
So somehow the website has to pass the browsers IP through in the request,
and for DAS to restrict the information based on this rather than on the
IP of the EnsEMBL website... this is tricky to achieve with much security.
James
More information about the DAS
mailing list