> > - I personally consider this security measure neither appropriate nor > > useful. > > You may call me paranoid, but I have a permanent internet connection with > static IPs at home for about 10 years now (I started with an analog leased > line using two USR Dual Standard modems, the whole thing cost me about > 800DM per month at that time). I'm also administrating other networks with > static IPs and permanent internet connections. And I didn't have a single > serious security incident in all the years. I don't know, how well the > svnserve code is written, but in case there's an incident, I want at least > be able to get behind the originator. If I were an attacker and was thwarted by my current ISP not having a valid revese DNS, I would simply try from a different one. At my house, that is as easy as changing my wireless settings. In this case, it would be better to have the IP of my ISP instead of my neighbor's or the local Starbucks. At least this way you would have some valid information about me. It sounds like this policy is hampering valid users as well, so I would have to agree it is neither appropriate nor useful. - Mike ---------------------------------------------------------------------- To unsubscribe from the list send mail to majordomo@musoftware.de with the string "unsubscribe cc65" in the body(!) of the mail.Received on Tue Aug 5 18:00:07 2008
This archive was generated by hypermail 2.1.8 : 2008-08-05 18:00:10 CEST