Page 3 of 3 FirstFirst 123
Results 21 to 22 of 22

Thread: Unique Authentication in PHP

  1. October 14th, 2004, 07:24 PM #21
    chsh
    chsh is offline
    Senior Member
    Join Date
    Nov 2001
    Posts
    1,255
    Originally posted here by SittingDuck
    If you are running any kind of admin section, all the traffic to that area should be done over ssl, you never know who might be listening .
    Indeed...

    That is how ssl client side certificate authentication works .
    Perhaps I wasn't clear. I meant an HTML form, with a PHP backend which does the key processing. The key could be arbitrarily generated.
    Chris Shepherd
    The Nelson-Shepherd cutoff: The point at which you realise someone is an idiot while trying to help them.
    \"Well as far as the spelling, I speak fluently both your native languages. Do you even can try spell mine ?\" -- Failed Insult
    Is your whole family retarded, or did they just catch it from you?
    Reply With Quote Reply With Quote
  2. October 14th, 2004, 07:24 PM #22
    Juridian
    Juridian is offline
    Ninja Code Monkey
    Join Date
    Nov 2001
    Location
    Washington State
    Posts
    1,027
    I agree with chsh about the key auth. I'd also limit who can access that part of the website via standard access controls limiting the requests to specific machines.
    "When I get a little money I buy books; and if any is left I buy food and clothes." - Erasmus
    "There is no programming language, no matter how structured, that will prevent programmers from writing bad programs." - L. Flon
    "Mischief my ass, you are an unethical moron." - chsh
    Blog of X
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules