Beefy Boxes and Bandwidth Generously Provided by pair Networks
Perl-Sensitive Sunglasses
 
PerlMonks  

Re: How to make a secure website

by Anonymous Monk
on Jul 09, 2004 at 16:03 UTC ( [id://373185]=note: print w/replies, xml ) Need Help??


in reply to How to make a secure website

A good session-id would be constructed like this:

choose a few (around 70) strings at random

place username,IP,user-agent among them

calculate the Digest::MD5 from their concatenation

prepend this and the (entered) password to each of them

sort these (combined) strings by their Digest::MD5

concatenate the original strings in this sorted order

calculate the Digest::MD5 of this concatenation and use it as session-id

place the original strings at key session-id into the database

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://373185]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others pondering the Monastery: (6)
As of 2024-04-18 13:45 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found