Click here to Skip to main content
15,914,350 members
Home / Discussions / Web Development
   

Web Development

 
GeneralRe: ASP and Outlook meetings Pin
Jeremy Oldham7-Jan-03 1:27
Jeremy Oldham7-Jan-03 1:27 
GeneralCP Forums Pin
Jon Newman5-Jan-03 9:59
Jon Newman5-Jan-03 9:59 
GeneralRe: CP Forums Pin
David Wulff5-Jan-03 10:36
David Wulff5-Jan-03 10:36 
Generalmeta tag search Pin
Sarvesvara (BVKS) Dasa4-Jan-03 21:42
Sarvesvara (BVKS) Dasa4-Jan-03 21:42 
GeneralCookie security Pin
alex.barylski4-Jan-03 2:01
alex.barylski4-Jan-03 2:01 
GeneralRe: Cookie security Pin
Paul Riley4-Jan-03 4:13
Paul Riley4-Jan-03 4:13 
GeneralRe: Cookie security Pin
alex.barylski4-Jan-03 11:19
alex.barylski4-Jan-03 11:19 
GeneralRe: Cookie security Pin
Paul Riley4-Jan-03 11:52
Paul Riley4-Jan-03 11:52 
Hockey wrote:
I've had to need to share information with both client/server before and cookies made this possible, but I guess for a login script it's not totally nessecary.

Exactly! In fact, once the user id / password has been received and verified by the server, the only thing you need in the cookie is the user id, encrypted or not.

Hockey wrote:
I was hoping to be able to have some JScript check the existance of a authenticated cookie name/value and offer some pre warning via message boxes that YOU MUST LOGIN BEFORE ACCESSING THIS PAGE, but I guess i'll have to do it on the server side of things

Yeah. For securities sake, it's always better to verify everything on the server side. You can have validation on the client side AS WELL, for the convenience of the user and to save unnecessary requests to the server, but there are too many ways to bypass client-side validation using malicious programs so you should check it again.

That goes for absolutely any information being passed to the server.

Hockey wrote:
I've used that technnique on shareware before...but your right it becomes to much of a pain to last forever.

Also, you'll almost certainly find that most web pages that have limited membership will validate the user id on the server against a database which holds the start or end date of membership.

Few will rely on the cookie expiry date to end membership, in fact many will want to hold onto the cookie to make sure that no one signs up for an extra "trial" period some months later.

Paul
Pleasently caving in, I come undone - Queens of the Stone Age, No One Knows
GeneralRe: Cookie security Pin
Philip Patrick4-Jan-03 6:33
professionalPhilip Patrick4-Jan-03 6:33 
GeneralRe: Cookie security Pin
alex.barylski4-Jan-03 11:22
alex.barylski4-Jan-03 11:22 
GeneralUnique Solution Pin
Anonymous3-Jan-03 19:34
Anonymous3-Jan-03 19:34 
GeneralRe: Unique Solution Pin
Jason Henderson6-Jan-03 11:48
Jason Henderson6-Jan-03 11:48 
GeneralRe: Unique Solution Pin
Robby7-Jan-03 3:06
Robby7-Jan-03 3:06 
GeneralRe: Unique Solution Pin
Jason Henderson7-Jan-03 3:08
Jason Henderson7-Jan-03 3:08 
Generalrandom trappable errors Pin
Max Santos3-Jan-03 8:53
Max Santos3-Jan-03 8:53 
GeneralImage From asp Pin
Ghasrfakhri3-Jan-03 7:14
Ghasrfakhri3-Jan-03 7:14 
GeneralRe: Image From asp Pin
Philip Patrick3-Jan-03 22:45
professionalPhilip Patrick3-Jan-03 22:45 
GeneralRe: Image From asp Pin
Ghasrfakhri4-Jan-03 7:07
Ghasrfakhri4-Jan-03 7:07 
GeneralRe: Image From asp Pin
Philip Patrick4-Jan-03 8:53
professionalPhilip Patrick4-Jan-03 8:53 
Generalsecure server performance Pin
berndg3-Jan-03 6:50
berndg3-Jan-03 6:50 
GeneralRe: secure server performance Pin
l a u r e n3-Jan-03 7:42
l a u r e n3-Jan-03 7:42 
Generalhiding root of web pages Pin
Andy H2-Jan-03 12:54
Andy H2-Jan-03 12:54 
GeneralRe: hiding root of web pages Pin
Paul Riley2-Jan-03 13:05
Paul Riley2-Jan-03 13:05 
GeneralRe: hiding root of web pages Pin
Ted Ferenc4-Jan-03 9:52
Ted Ferenc4-Jan-03 9:52 
Generaljavascript CGI Pin
scrasch2-Jan-03 10:32
scrasch2-Jan-03 10:32 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Praise Praise    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.