CGI/Perl Guide | Learning Center | Forums | Advertise | Login
Site Search: in

  Main Index MAIN
INDEX
Search Posts SEARCH
POSTS
Who's Online WHO'S
ONLINE
Log in LOG
IN

Home: Need a Custom or Prewritten Perl Program?: Throw Down The Gauntlet:
Perl Security

 



prasadp69
Deleted

Jun 21, 2000, 1:29 PM

Post #1 of 2 (2906 views)
Perl Security Can't Post

Hi,
I have an unix based application and I am trying to view the application details through a browser which are coming from the application's backend database.

I have unix level userid and passwords for this application and how do I authenticate the userid and password from the browser to update/add/delete the data in the application. The authentication should hold good for the entire transaction(i.e logging out of the browser).

Thank you in advance
prasad


peixotoj
Deleted

Jun 27, 2000, 12:40 AM

Post #2 of 2 (2906 views)
Re: Perl Security [In reply to] Can't Post

HI.

I use mySQL for all my database needs. I have a session table and a user table.
When some-one logs in I scan the user database and if found I create a random session number.
I then expire cookie and create a new cookie and set it to "user=sessionid", I then log in the database the user and session and time.
Now All I do is call a routine that splits the cookie and searchs the session database for the user and session. If found I then
check if the login in time is not older than 20 mins else he must log in again. This is one way of doing it.

The 2nd is using the .htaccess file. There is a great script at
http://solutionscripts.com/warehouse/access_denied/index.shtml . This should be able to help you.



------------------
Jason Peixoto
27827368956
http://www.eskybiz.com
peixotoj@angelfire.com

 
 


Search for (options) Powered by Gossamer Forum v.1.2.0

Web Applications & Managed Hosting Powered by Gossamer Threads
Visit our Mailing List Archives