Beefy Boxes and Bandwidth Generously Provided by pair Networks
P is for Practical
 
PerlMonks  

Re^3: Encrypt web form values

by fmerges (Chaplain)
on Dec 06, 2008 at 06:56 UTC ( #728508=note: print w/ replies, xml ) Need Help??


in reply to Re^2: Encrypt web form values
in thread Encrypt web form values

Hi,

Yes, you should definitely look into CGI::Session. No the user cannot modify it, if you're not allowing it from the server side code. You can store almost whatever you want, and yes it can be reliably used. For storage you have also several options, file, db, cache, etc.

Regards,

fmerges at irc.freenode.net


Comment on Re^3: Encrypt web form values
Re^4: Encrypt web form values
by Anonymous Monk on Dec 06, 2008 at 12:44 UTC

    Thanks, fmerges.

    So the recipient of the web page has no way of tampering with the session data, am I right? Could you clarify "if you're not allowing it from the server side code."? What does that mean?

      Hi,

      No the client cannot directly tamper.

      Check out the tutorial, CGI::Session::Tutorial it explains you all the details.

      BTW take also a look at this module Data::FormValidator and taint mode.

      Regards,

      fmerges at irc.freenode.net
        The tutorial was helpful. I've yet to check out Data::ForValidator. It's reassuring to know the client cannot tamper with the data. I'll go in that direction. Thank you :)

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://728508]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others drinking their drinks and smoking their pipes about the Monastery: (16)
As of 2014-07-31 19:50 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    My favorite superfluous repetitious redundant duplicative phrase is:









    Results (252 votes), past polls