[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [PROGRAMMERING] PHP: Gemme passwordpå en forsvarlig måde.



Peter Makholm <sslug@sslug> writes:

Jeg hader når jeg glemmer fodnoter.

> Til autologin ville jeg absolut gemme brugerens rigtige
> 'credentials'[0] og så lave nogle adhoc-credentials, det kunne

0) min En-Da siger akreditiver - den ville nok lige skulle vende hvis
   jeg selv stødte på den. m-w.com foreslår certificate som
   alternativ, men det ville kunne misforstås som et rigtigt
   certificat.


Hvilket minder mig om noget endnu bedre. Brug SSL-certifikater når
brugeren sidder ved deres egne maskiner. Hvis du i din
mod_ssl-opsætning skriver 'SSLOptions +FakeBasicAuth' får du et
brugernavn som ved helt almindelig HTTP authentificering.

Du skal så selvfølgelig stadigvæk lokalt gemme alt hvad brugeren har
brug for for at komme videre.

-- 
 Peter Makholm     |               Vi smider blade allesammen - hele tiden
 sslug@sslug |                      som et konstant spirende efterår
 http://hacking.dk |                 Og hele tiden vokser nye frugter frem
                   |                  og vi finder nogen til at plukke dem
                   |                            -- Tilt, Perkussive popler


 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2005-08-10, 22:44 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *