Re: Perl CGI Secure Authentication

Take a look at this old node Security: Cookies vs HTTP authentication for starters.

Then read this good research paper called Weaning the Web off of Session Cookies. Making Digest Authentication Viable which talks about why to not use cookies and instead go for digest authentication

Comment on Re: Perl CGI Secure Authentication

Replies are listed 'Best First'.
Re^2: Perl CGI Secure Authentication by Anonymous Monk on Oct 07, 2012 at 01:35 UTC
and instead go for digest authentication Hmm, seems to me it is a proposal for an implementation, but there is no actual implementation anywhere -- in other words, unsupported by anthing, ie useless	[reply]
Re^3: Perl CGI Secure Authentication by Anonymous Monk on Oct 07, 2012 at 06:48 UTC
You're not the only one, see Should web developers say no to cookie-based authentication?	[reply]
Re^3: Perl CGI Secure Authentication by nikosv (Deacon) on Oct 08, 2012 at 05:51 UTC
unsupported by anthing, ie useless what do you mean? looks like you are missing the point. The paper says that digest authentication was and is here it just hasn't taken off for usability reasons and suggests how to overcome those so it can be considered as a viable alternative to cookies on the contrary it is very usefull since you cannot disregard the paper's educational and awarenes raising value by going through the pros and cons of each option which directly answers the OP's question who is looking for those alternatives	[reply]