Quote:
Originally Posted by Martian
Actually, nobody has any classes for anything. That's the whole point of CIDR.
Regarding the rest, any security measure can be circumvented by someone who has the necessary knowledge and determination. Doesn't make such measures useless. Security could more properly be deemed to be the practice of making access too difficult to be worth the reward.
Barring a creepy stalker scenario, I can't imagine his wife's ex is so determined to see a bunch of wedding photos that he'd go through the effort of accessing the site via a random wireless AP. Aside from that, there's no practical way to prevent that while keeping the site easy for the intended userbase to access.
Ultimately, the only foolproof security measure on the internet is to not put anything you don't want anyone to have access to online. However, that doesn't negate the usefulness of simple tricks like this one.
|
Actually there are corporations that have classes alotted to them, CIDR just allows them to divvy things more precisely than a class A, B, or C.
Yes the best security would be a complete lockdown where the permitted user would go though hell just to get access but IP blocking is false security. The disallowed party doesn't even have to attempt to circumvent security if he on a whim decides to check the page while visiting one of hundreds of possible internet access points. Really how secure is your house when you deadbolt and chain the front door but leave your side door wide open?
I'm not here to decide what others have to do for security but I'll just say this, you can lock the page down like fort knox, you can even remove the pictures and burn them but he already (supposedly) went to the site and saw the wedding photos so unless your having more weddings it's all really futile.