Beefy Boxes and Bandwidth Generously Provided by pair Networks
Think about Loose Coupling

Re: Embeded passwords

by flexvault (Prior)
on Aug 29, 2012 at 17:58 UTC ( #990521=note: print w/ replies, xml ) Need Help??

in reply to Embeded passwords


I did something like this for a web-site that uses 'http' and not 'https'. The site required the user to login before seeing his information. The purpose was to prevent malicious updating of user information by hackers, and the site did not hold any sensitive information. The solution was to develop a mathematical Perl algorithm on the server side, and a javascript generated mathematical response from the PC.

The 'cgi-bin' Perl script would send a 'login' screen with dynamically generated tokens that when the person typed the password, javascript would change the tokens to a new set that was sent to the server. Perl on the server would process the new tokens and use the server side 'password' and if they matched correctly, then the user was logged in. The tokens never repeated, and were generated so that they had to be used within 1 minute. If this is what you need, I'll find the code and post it.

For our purposes this was safe enough!


"Well done is better than well said." - Benjamin Franklin

Comment on Re: Embeded passwords

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://990521]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others rifling through the Monastery: (4)
As of 2015-11-28 10:44 GMT
Find Nodes?
    Voting Booth?

    What would be the most significant thing to happen if a rope (or wire) tied the Earth and the Moon together?

    Results (741 votes), past polls