Unique Authentication in PHP

Quote:

---

Originally posted here by SittingDuck
If you are running any kind of admin section, all the traffic to that area should be done over ssl, you never know who might be listening ;).

---

Indeed...

Quote:

---

That is how ssl client side certificate authentication works :).

---

Perhaps I wasn't clear. I meant an HTML form, with a PHP backend which does the key processing. The key could be arbitrarily generated.

I agree with chsh about the key auth. I'd also limit who can access that part of the website via standard access controls limiting the requests to specific machines.