Beefy Boxes and Bandwidth Generously Provided by pair Networks
P is for Practical
 
PerlMonks  

Answer: Login and CGI security problem.

by DarkSniper (Initiate)
on Feb 17, 2003 at 11:40 UTC ( #235942=categorized answer: print w/replies, xml ) Need Help??

Q&A > CGI programming > Login and CGI security ("open cookie jar") problem. - Answer contributed by DarkSniper

i hacked a quick perlscript that generates a certain value under one hour. This is all controlled by cookies. :)
my @time = localtime(); my $time_algo = 0; $time_algo = += $_ for @time[2..5]; my $salt = 'salty'; my $cipher = crypt($time_algo,$salt); if ($cipher ne $current_cipher){ #force to reidentify; }
good luck :)

Log In?
Username:
Password:

What's my password?
Create A New User
Chatterbox?
[Corion]: hippo: Oooh, that sounds quite nice - let me read the documentation on that :)
[hippo]: https://www. postgresql.org/ docs/current/ static/auth- methods.html#AUTH- TRUST
[erix]: or compile & run an instance as yourself (not user 'postgres')
[erix]: easiest setup is to run with PG* env variables set, and a custom .pgpass files (can be a $PGPASSFILE)
[Corion]: Hmm - "trust" sounds interesting, but I have still to find whether I can restrict that on a per-DB level ;)
[Corion]: erix: Sure, but SQLite doesn't even need that :)
[hippo]: Corion: Yes, you can. It's all in the pg_hba.conf
[erix]: yeah, but there is a lot SQLite cannot do :)
[hippo]: Database is the 2nd column.
shmem .oO( docker. docker. docker? docker. docker! docker )

How do I use this? | Other CB clients
Other Users?
Others pondering the Monastery: (14)
As of 2018-02-23 15:12 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    When it is dark outside I am happiest to see ...














    Results (302 votes). Check out past polls.

    Notices?