Welcome Guest, Not a member yet? Register   Sign In
Uber-simple login script...
#2

[eluser]crumpet[/eluser]
if you really want to be secure you can use javascript to md5 the password before sending it encase someone is listening - or ssh i guess.

Also this statement : isset( $_SESSION['lastactivity'])
&& is_numeric( $_SESSION['lastactivity'])
&& ((time()- $_SESSION['lastactivity'])>$loginLength)
will fail if last activity is not a number.. so a user could steal a cookie and tamper it to have lastactivity = 'a' or something and it would last forever...


Messages In This Thread
Uber-simple login script... - by El Forum - 10-14-2008, 10:08 AM
Uber-simple login script... - by El Forum - 10-14-2008, 03:29 PM
Uber-simple login script... - by El Forum - 10-14-2008, 03:58 PM
Uber-simple login script... - by El Forum - 10-14-2008, 06:04 PM
Uber-simple login script... - by El Forum - 10-14-2008, 07:06 PM
Uber-simple login script... - by El Forum - 10-15-2008, 01:06 AM
Uber-simple login script... - by El Forum - 10-15-2008, 07:32 AM



Theme © iAndrew 2016 - Forum software by © MyBB