<html><body>
<p><font size="2" face="sans-serif">Hi Jules,</font><br>
<br>
<font size="2" face="sans-serif">my aim is to prevent Drop-off's within my company domains, if the user cannot login (has no rights to login).</font><br>
<font size="2" face="sans-serif">From outside my company a Drop-off should be possible without rights. Because external Partner should be able to Upload files to employees of my company.</font><br>
<br>
<font size="2" face="sans-serif">I found a quick workaround with my existing </font><font size="2" face="sans-serif"><b>mod_security</b></font><font size="2" face="sans-serif"> module in apache.</font><br>
<br>
<font size="2" face="sans-serif">If a user is not authorized, he has no Cookie assigned. This circumstance in combination with source-address and filename (verify.php) can i use to distinguish an authorized user from a non authorized user. In case of matching the user is redirected to an error-Page.</font><br>
<br>
<font size="2" face="sans-serif">This is only a quick workaround and only security by obscurity. </font><br>
<br>
<font size="2" face="sans-serif">The best would be an identification of employees in case for non-authorized Drop-Off's (user is not logged in) --> combination of localSubnet + DomainBlacklisting (kaufland.xx)</font><br>
<font size="2" face="sans-serif">If the employee has the right to upload files to outside world, the identification should not match.</font><br>
<br>
<font size="2" face="sans-serif">Mit freundlichen Grüßen / Best regards<br>
<br>
Patrick Gaikowski<br>
Tel: +49 7132 94 3568<br>
Fax: +49 7132 94 73568<br>
E-Mail: patrick.gaikowski@kaufland.com<br>
KI 967850: IT International / IT Governance / Netzwerk Design und IT-Sicherheit<br>
Office:<br>
Lindichstrasse 11<br>
D-74189 Weinsberg</font><br>
<br>
<br>
<font size="2" face="sans-serif"><a href="http://www.kaufland.de">http://www.kaufland.de</a> </font><br>
<font size="2" face="sans-serif"><a href="http://www.spannende-it.de">http://www.spannende-it.de</a></font><br>
<font size="2" face="sans-serif">Wir sind die Nr. 1:</font><br>
<font size="2" face="sans-serif">Kaufland ist "Bester Lebensmittelmarkt 2011"!</font><br>
<br>
<font size="2" face="sans-serif">Kaufland Informationssysteme GmbH & Co. KG</font><br>
<font size="2" face="sans-serif">Postfach 12 53 - 74149 Neckarsulm<br>
Kommanditgesellschaft<br>
Sitz: Neckarsulm<br>
Registergericht: Stuttgart HRA 104163</font><br>
<br>
<br>
<br>
<br>
<br>
</body></html>