Home: General Discussions: Internet Security:
Members' Area


Dec 27, 2000, 2:25 PM

Views: 45374
Members' Area

I've made a "members' area" on my website. I was wondering if there is a better way to protect it. At present I use .htaccess to completely protect the directory. When a member is verified a cookie is set with a random number, and the same number is logged in a file on the server. Users use a script called read.cgi to fetch pages from the protected directory (using GET in the obvious way). read.cgi always checks the cookie against the file on the server before retrieving a page.

Any better ideas would be much appreciated.

p.s. If anybody thinks my script would be useful, they're welcome to a copy.


Jan 26, 2001, 6:04 PM

Views: 45336
Re: Members' Area

.htaccess is the best way to protect a directory. Only way I trust. :|