Skip to Content.
Sympa Menu

cat-users - Re: [cat-users] Hardening of web server - <frame> difficulties?

cat-users AT lists.geant.org

Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

List archive

Re: [cat-users] Hardening of web server - <frame> difficulties?


Chronological Thread 
    < Chronological >      < Thread >
  • From: Alan Buxey <A.L.M.Buxey AT lboro.ac.uk>
  • To: Tomasz Wolniewicz <twoln AT umk.pl>, <cat-users AT geant.net>
  • Subject: Re: [cat-users] Hardening of web server - <frame> difficulties?
  • Date: Mon, 19 Oct 2015 11:45:49 +0100
  • List-archive: <https://mail.geant.net/mailman/private/cat-users/>
  • List-id: "The mailing list for users of the eduroam Configuration Assistant Tool \(CAT\)" <cat-users.geant.net>
However. If embedding the CAT page allows many sites to offer some setup system within the framework of their wireless systems, allowing them to provide eduroam to their users and allowing their users to be configured correctly then we'd be shooting ourselves in the foot and causing eduroam to be a problem for them and a disservice to sites. Which would be a shame. These things need to be in balance with perspective (hence my question of whether this is a valid security concern for eduroam CAT web pages). To often it appears that a few people with little end organisation exposure are making decisions which affect thousands of sites and millions of end users.

At least ensure that ALL federations in CAT have had time to make announcements of this (i can tell you that many orgs are not on this mailing list! ) so that sites have a chance to respond/feedback.


alan

Archive powered by MHonArc 2.6.19.

Top of Page