Re^2: How about a "reclaim your post" feature?


Keep It Simple, Stupid
	PerlMonks

Re^2: How about a "reclaim your post" feature?

by Anonymous Monk

on Jan 26, 2015 at 01:46 UTC ( [id://1114486]=note: print w/replies, xml )

Need Help??

in reply to Re: How about a "reclaim your post" feature?
in thread How about a "reclaim your post" feature?

Sounds like a good idea though I rather think it should go through a consideration stage since IPs are not good security.

Um, how about a Cryptographic nonce? Like Plack::Middleware::CSRFBlock but using Session::Token

And after posting anonymously, there is a form with a nonce and a submit button of [LOGIN AND CLAIM OWNERSHIP OF THIS POST YOU JUST MADE] that way there is IP nothing ... you made an anonymous post, great, own it immediately or you can't own it

Comment on Re^2: How about a "reclaim your post" feature? Download Code

Replies are listed 'Best First'.
Re^3: How about a "reclaim your post" feature? by Your Mother (Archbishop) on Jan 26, 2015 at 03:51 UTC
Excellent++. Stacking it such that signing in doesn’t drop it would also be a good idea. Or IP + User Agent string + time limit HMAC or something would’t need a cookie/session at all and make it such that a “replay” attack wouldn’t work in … 10 minutes (based on post time) or so. More secure than the login under HTTP. :P	[reply]

In Section Perl Monks Discussion

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://1114486]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others imbibing at the Monastery: (3)

As of 2026-03-06 06:09 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Voting Booth^?

No recent polls found

Notices^?

	• hippo	‥ epoptai's answer Re: how do I set a cookie and redirect was blessed by hippo!
	• erzuuli	‥ Anonymous Monks are no longer allowed to use Super Search, due to an excessive use of this resource by robots.