[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Raq 2 & Raq 3 Filtered Login Security

Subject: RE: [cobalt-users] Raq 2 & Raq 3 Filtered Login Security
From: Paul Schreiber <cheesefactory@xxxxxxxxx>
Date: Wed Apr 5 13:16:51 2000

--- Dan <dan@xxxxxxxxxxxxx> wrote:
> > But how do we funnel all traffic to a single front door web page for an
> > entire site without using htaccess or making all the web pages dynamic
> > (which will be too slow)?
> >
> > Symbolic links?
> > Javascript and cookies on all pages?
> >
> Forget JavaScript and cookies, IMO. Too many people may not have them
> enabled.
> 
> I'm not sure how exactly it would be done, but I believe there's a way via
> HTTP_REFERRER to make sure a directory is accessed only from links within
> the site. e.g., a front door.

Referrers can be faked; as someone said earlier, you want session management.
Embedding the session in the URLs is basically foolproof. :-)

phplib.netuse.de
php4 has built-in session support

Paul

__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com

Prev by Date: Re: [cobalt-users] Raq 2 & Raq 3 Filtered Login Security
Next by Date: Re: [cobalt-users] mySQL and PHP
Previous by thread: Re: [cobalt-users] Raq 2 & Raq 3 Filtered Login Security
Next by thread: [cobalt-users] Re: multiple domains pointing to a single site.

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index