[standards-jig] Enhanced details in client => server connection

Michael Brown michael at aurora.gen.nz
Mon Jun 23 07:31:52 UTC 2003


Has anyone looked at enhancing the client => server
connection/authentication process?  In particular, I would like to see the
client send the current client name and version number, and the server
return the clients real IP address.

The main uses for the client name/version would be:

- The ability to lock down a server to only accept connections from one
particular type of client (very useful in corporate environments etc)
- The ability to return an error or warning message to a user attempting to
connect with a client that has a serious known bug (could cause server
flooding etc) or security vulnerability.
- Server admins could gather stats on what clients are being used on their
servers

Obviously it's very easy to fake the client name/version being sent, but it
could still be useful when used in good faith.

The server supplying the user with their true external IP address would be
very useful for setting up OOB transfers etc for NAT'ed clients.  It can
sometimes be difficult to determine the clients external IP from their own
machine, and often requires connecting to a second server to get this info
(very difficult in an internet scenario where there may not be a connection
to an Internet server such as http://checkip.dyndns.org/ )

Has this been looked at before?

Michael.





More information about the Standards mailing list