Go Back  HTML Forums - Free Webmaster Forums and Help Forums > WEBSITE DEVELOPMENT > Databasing
Reload this Page .php?something=number
User Name:
Password:
 

Reply
Page 2 of 2 < 1 2  
Thread Tools   Display Modes
  View First Unread
 
Old 08-09-2004, 02:43 PM
  #16
afterburn
Can't say much here
 
afterburn's Avatar
 
Join Date: May 2004
Posts: 2,851
iTrader: (0)
afterburn will become famous soon enough
I would like to add to the above post.

Do not store passwords either. Use only 1 part of the key or an key that does not matter on the username/password.

like creating an Guid for UserId and using that as the cookie value rather than the username. It will limit the surface area of the database to what you expose rather than what the client has. Doing it this will prohibit brute force attacks to a minium.
__________________
ASP.net nice bits
Code Smith rocking tool for Code Generation in any language (Written in .net)
Red Gate SQL tools for DBA
Blog Personal blog
.afterburn
afterburn is offline   Add to del.icio.us Add to del.icio.us    Can you digg it?Can you digg it? Reply With Quote
Old 08-09-2004, 06:20 PM
  #17
nealbo
Paladin (Level 15)
 
nealbo's Avatar
 
Join Date: Aug 2003
Posts: 327
iTrader: (0)
nealbo is on a distinguished road
I can't use sessions or cookies for this specific part of my script because it's for users to view the stats of other users. There's no important information, just how well they're doing in certain computer games etc so theres no chance of a security risk.
And as for the password bit, I have that stored with my database, and within cookies with some sort of encryption (can't remember what, but I got it from a very good tutorial) but I think that thats safe, isn't it?
Thanks for the warnings, and I'll definately take them on board for any future projects I might do with a more serious tone, which'll probably never happen
Anyways, once again thanks for the help everyone!
nealbo is offline   Add to del.icio.us Add to del.icio.us    Can you digg it?Can you digg it? Reply With Quote

Reply
Page 2 of 2 < 1 2  
« Previous Thread | Next Thread »
KEEP TABS
SPONSORS
 
Boxedart
 
 


 
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
  
  
 
 



 
  POSTING RULES
 
 
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Thread Tools
Display Modes
Linear Mode Linear Mode

Forum Jump

 

All times are GMT -5. The time now is 07:21 AM.
   
Network Sites: Web Tools and Resources | Web Templates | Free Webmaster Resources | Free JavaScripts | Free Clip Art | Clipart Resources |
Turnkey Website Templates | Free Fonts | HTML Help | Stock Photos | Quality Hosting | Learn Perl and CGI | Top Web Hosts | CMS Templates

Partner Sites: Free Web Templates | Webmaster Resources | Javascripts | Stock Photos | DHTML Scripts | Create a free forum | Web Hosting Reviews |Web Hosting
| Unlimited Domain Hosting

Mascot team created by Drawshop.com

Powered by vBulletin® Version 3.6.7
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.

Server Monitoring by ENIACmonitor 0.01
HTMLforums.com © Big Resources, Inc. Web Design by BoxedArt.com
vRewrite 1.5 beta SEOed URLs completed by Tech Help Forum and Chalo Na.