The ­w option on a junction provides the following measures of protection: Prevents the use of the 8.3 file name format. When the junction is configured with the ­w option, a user cannot avoid an explicit ACL on a long file name by using the short (8.3) form of the file name. The server returns a 403 Forbidden error on any short form file name entered. Disallows trailing dots in directory and file names. If a file or directory contains trailing dots, a 403 Forbidden error is returned. The ­w option automatically invokes the ­i option (meaning it enforces case-insensitivity). 4.9 WebSEAL single sign-on mechanisms After a user has been authenticated by WebSEAL and an authorization decision has been made, WebSEAL has to forward the user's request to a back-end Web application server. If needed, WebSEAL can include information about the user, such as X.509 distinguished name, group memberships, or any other value. The mechanisms to forward that information can vary. You can use standard protocols such as the HTTP basic authentication header, or proprietary mechanisms, when talking to specific server products. WebSEAL supports