a secure log-in system
From: ojorus (ojorus_at_hotmail.com)
Date: 01/31/04
- Next message: Zaphod Beeblebrox: "Re: a secure log-in system"
- Previous message: CountScubula: "Re: Upload automatically"
- Next in thread: Zaphod Beeblebrox: "Re: a secure log-in system"
- Reply: Zaphod Beeblebrox: "Re: a secure log-in system"
- Reply: Chung Leong: "Re: a secure log-in system"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sat, 31 Jan 2004 00:53:32 -0000
Hello!
I want to make a login system as secure as possible on a website I develop.
* The user shall log on using a Username and a password (which is stored in
a mySQL database)
*The server which I use to run my application has "register_globals"
activated (set to "on"), so that has to be taken into concideration
*The system should be secure even if the user do not click "log out" when he
is finished. (Users often just close the browser window)
*It is good if the system works even if coockies are not enabled on the
client
How can I make a login-system as secure as possible based on this?
Do I have to use session-variables, or are there other ways?
Happy for suggestions and comments on this.
regards
ojorus
-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =-----
- Next message: Zaphod Beeblebrox: "Re: a secure log-in system"
- Previous message: CountScubula: "Re: Upload automatically"
- Next in thread: Zaphod Beeblebrox: "Re: a secure log-in system"
- Reply: Zaphod Beeblebrox: "Re: a secure log-in system"
- Reply: Chung Leong: "Re: a secure log-in system"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
