Get Windows username on Intranet

Hi all,

My Intranet currently runs fine (on a Linux-based server, with Apache,
MySQL and PHP). The mail-form works splendid, except that I like to
catch the users logon-name (so they cannot fake their name).

Is there a way to achieve this, preferable cross-browser.

I'm affraid it won't be possible (security risk).
--
Toni Van Remortel
Netwerkbeheerder HA Dept. Ontwerpwetenschappen

Closest I have found to being able to automatically identify who is using a
script is to get their computer name using

$nm=gethostbyaddr($REMOTE_HOST);

It does not tell you who actually used the script but rather what computer
it came from.
The names we give the computers here are the user's last name which makes it
easier to tell who did what, but you could always use a database to keep
track of who has what computer.

You are supposed to be able to get the login name using a signed java applet
somehow, but I have not had the time to figure that one out yet.

The only way I can think of to tell who actually used it would be to have a
sign-in or at least a password for each user and make them use it each time
they send a message.

"Toni Van Remortel" <t.vanremortel@DITISTEVEEL.ha.be> wrote in message
news:cip57c$o04$2@ikaria.belnet.be...
> Hi all,
>
> My Intranet currently runs fine (on a Linux-based server, with Apache,
> MySQL and PHP). The mail-form works splendid, except that I like to catch
> the users logon-name (so they cannot fake their name).
>
> Is there a way to achieve this, preferable cross-browser.
>
> I'm affraid it won't be possible (security risk).
> --
> Toni Van Remortel
> Netwerkbeheerder HA Dept. Ontwerpwetenschappen

Toni Van Remortel wrote:

> Hi all,
>
> My Intranet currently runs fine (on a Linux-based server, with Apache,
> MySQL and PHP). The mail-form works splendid, except that I like to
> catch the users logon-name (so they cannot fake their name).
>
> Is there a way to achieve this, preferable cross-browser.
>
> I'm affraid it won't be possible (security risk).

It's tricky, but not impossible - you could assign x509 certificates to all
your users and setup your webserver to require a cerificate with the right
signatory from the client.

Alternatively - for a quick-fix solution (although it's not very secure) you
could use ident - See the squid website for links to a MS-Windows client.

I don't know if NTLM can be integrated - try google.

HTH

C.

Colin McKinnon wrote:
> Toni Van Remortel wrote:
>
> 
>
>
> It's tricky, but not impossible - you could assign x509 certificates to al
l
> your users and setup your webserver to require a cerificate with the right
> signatory from the client.

Sounds interesting.

> Alternatively - for a quick-fix solution (although it's not very secure) y
ou
> could use ident - See the squid website for links to a MS-Windows client.

Just had to remove it due to conflicts with other software on the
workstations. But I'll take it in mind again.

> I don't know if NTLM can be integrated - try google.

Should be possible, I'm trying to get that one compiling. Thanx!

--
Toni Van Remortel
Netwerkbeheerder HA Dept. Ontwerpwetenschappen

Arg wrote:
> Closest I have found to being able to automatically identify who is using 
a
> script is to get their computer name using
>
> $nm=gethostbyaddr($REMOTE_HOST);

Hmm, seems an option. But our workstations just have a logic number
(students do move sometime ;-)

--
Toni Van Remortel
Netwerkbeheerder HA Dept. Ontwerpwetenschappen