Beefy Boxes and Bandwidth Generously Provided by pair Networks
laziness, impatience, and hubris
 
PerlMonks  

Answer: Cookie based authentication: Is it secure?

by sinan (Sexton)
on Aug 30, 2000 at 12:24 UTC ( #30267=categorized answer: print w/replies, xml ) Need Help??

Q&A > CGI programming > Cookie based authentication: Is it secure? - Answer contributed by sinan

There is something you can do to insure security. Everytime a user logs on, generate a random number, put it on the user's machine as a cookie.
print "Set-Cookie: temp-id=$random_no; domain=yourdomain.com; expires= +".($now+3600);
At the same time, write the same $random_no to a DB on your server, as well as the user's username. So, you can now identify the user using a temporary id.

Hope this helps,

Sinan

Log In?
Username:
Password:

What's my password?
Create A New User
Chatterbox?
and monks are getting baked in the sun...

How do I use this? | Other CB clients
Other Users?
Others rifling through the Monastery: (4)
As of 2018-02-19 14:41 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    When it is dark outside I am happiest to see ...














    Results (265 votes). Check out past polls.

    Notices?