Decrypt During Download?

Pete Brower (pete@appx.com)
Tue, 30 Apr 1996 17:09:52 -0400


Message-Id: <318681A0.6C7157C4@appx.com>
Date: Tue, 30 Apr 1996 17:09:52 -0400
From: Pete Brower <pete@appx.com>
To: www-html@w3.org
Subject: Decrypt During Download?

Hello,

I am sorry if this is not the correct place to post this, but here
it goes:

I am building a Web Application to allow downloading of software
from our site.  The restriction is that the software be encrypted
for security reasons.  I have a Web Server application that
handles user validation before providing access to the download
Web page.  And the files to download exist within my anon FTP
directory (encrypted).  This is needed to allow direct FTP
downloads and they request via e-mail, the decrypt password.

I would like to have the Web page decrypt the file as it is
downloaded and the decryption happen on the server end.  I
have created a /cgi-bin/decrypt.cgi script that sends
"Content-type: application/zip"
""
and then decrypts the file to stdout.

The problem I am trying to bypass is the filename that gets
picked up and used on the client end to save the file.  It 
wants to save it as "decrypt.cgi".  I can get around this
by creating a whole bunch of files in my "cgi-bin" directory
called "file1.zip", "file2.zip", etc.  But these will grow over
time and all have the same 3 line of shell code (except for 
the filename and password on the crypt command).

Is the a mothod in the W3 standard to assign the filename
withing the CGI code or within the HTML anchor pointing
to it?  I tried

<A HREF=/cgi-bin/decrypt.cgi NAME=file1.zip>file1.zip</A>

but this did not work.

Thanks in advance for any response.  If this is not in the
standard, you may want to consider some method to handle
this in the future.

Pete Brower
R&D Fellow
APPX Software, Inc.
pete@appx.com

-- 
Pete Brower
R&D Fellow
APPX Software, Inc.
pete@appx.com