Re: CGI/1.0: last call

Tony Sanders (sanders@bsdi.com)
Mon, 06 Dec 1993 11:58:41 -0600


bobj <jern@spaceaix.jhuapl.edu> writes:
> Authentication must be the responsibility of the script writer. While

Authentication must be the responsibility of the server. If you want to
easily extend the possible authentication schemes then define a spec for
authentication scripts, but they should remain seperate from normal scripts,
which should not have to deal with authentication, that would be a HUGE
security hole.

--sanders