x10Hosting Forums

Corporate Free Hosting for the Masses.



Register

Reply
 
LinkBack Thread Tools Display Modes
x10Hosting Member

Join Date: Oct 2007
Posts: 4
Credits: 185
davep86 is on a distinguished road
Quote  
09-12-2008, 09:30 PM
PHP Login
What are some good ways to deal with login authentication on a PHP web site?
Reply With Quote
davep86 is offlineReport Post
x10 Elder

VPmase's Avatar

Join Date: Nov 2007
Posts: 832
Credits: 17,396
VPmase will become famous soon enough
Location: Dixon, IL, USA

Send a message via MSN to VPmase
Quote  
09-12-2008, 10:04 PM
Re: PHP Login
Elaborate on what you mean...
__________________
Visit my site!
Always use the search function before posting a new thread!
Extra10 | BuxBank | NeoBux
Extra10 | BuxBank | NeoBux
Help me out <3
Helpful suggestions: Read the rules on every forum, follow said rules, and if you are unsure or need help, search first
Reply With Quote
VPmase is offlineReport Post
x10 Sophmore

Join Date: Jun 2007
Posts: 100
Credits: 921
Grandcruiser is on a distinguished road
Quote  
09-12-2008, 10:07 PM
Re: PHP Login
I think he's looking for a login system.

Deadlock

Deadlock is already scripted so...you can use it if you want.

How to Make a Login System for Your Website

There's a guide if you want to write your own script.
Reply With Quote
Grandcruiser is offlineReport Post
x10Hosting Member

Join Date: Oct 2007
Posts: 4
Credits: 185
davep86 is on a distinguished road
Quote  
09-16-2008, 10:49 PM
Re: PHP Login
Thanks Grandcruiser, that helps.
Reply With Quote
davep86 is offlineReport Post
x10Hosting Member

Join Date: Sep 2008
Posts: 10
Credits: 388
mrkgg is on a distinguished road
Quote  
09-16-2008, 10:56 PM
Re: PHP Login
Thanks That's a great tip
Reply With Quote
mrkgg is offlineReport Post
x10 Lieutenant

Join Date: Oct 2007
Posts: 438
Credits: 4,200
mattura is just really nice
Quote  
09-17-2008, 01:06 PM
Re: PHP Login
The second link is not altogether secure...

Code like this:
PHP Code:
$name $_POST['user'];
$q_user mysql_query("SELECT * FROM USERS WHERE login='$name'"); 
is susceptible to attacks such as SQL injection. The input is trusted completely, which is a bad idea.

Also, it appears the passwords in the database are not encrypted, so any hacker, or database administrator can view all the passwords as plain text.

If you use this at all, don't put anything important in it!!
Just for learning purposes perhaps, until you realise all the security vulnerabilities.
__________________
----
Please donate credits if you had a really good reply from me! Rep is also appreciated. Thanks
matt.elementfx.com
Reply With Quote
mattura is offlineReport Post
Reply

Tags
login, php, security

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
[PHP] MySQL and PHP Bryon Tutorials 23 08-17-2008 03:15 AM
phpBB3 external login caiol611 Programming Help 11 04-27-2008 09:22 PM
php login system help... Agenator Programming Help 7 04-13-2008 09:43 AM
Ever Been Suspended For Using PHP? dragoneye_xp Off Topic 24 07-11-2006 02:05 PM


All times are GMT -5. The time now is 06:11 PM. Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.2.0 RC7
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios

Remortgages | Personal Car Finance | eHarmony Promotional Code | Loans | Credit Counseling