Also sprach Ray Bellis
What happens if someone else figures out what your 800 number is?
Well...we publish ours I believe, so that's not a big deal.
As it happens I run an 800 number based service in the UK but we do check the username in the RADIUS server against a table to ensure they're entitled to use the number before letting them in. We still run the risk of someone calling the number and just leaving it open, though, which over here in the UK will leave us picking up the tab for the call :-(
We limit the amount of hours they can use it...not to protect us as much, but to prevent them from running up a huge bill on toll-free charges without realizing it (which then protects us because that keeps them from yelling at us and disputing the charges :) There is a bit of risk involved, but if they don't have a valid userid/password, they get dropped pretty quickly, so there's not a huge risk there. Yeah, if someone were *really* out to get us they could run up a pretty big bill...but that's a risk we're willing to take (hasn't been a problem yet) -- Jeff McAdams Email: jeffm@iglou.com Head Network Administrator Voice: (502) 966-3848 IgLou Internet Services (800) 436-4456 - To unsubscribe to usr-tc, send an email to "majordomo@xmission.com" with "unsubscribe usr-tc" in the body of the message. For information on digests or retrieving files and old messages send "help" to the same address. Do not use quotes in your message.