Re: Re: PerlMonks MUD in progress

if and when I add a feature that allows users to check their private messages, I would require the login cookie which effectively requires a username/password combo to first be sent to the site.

You are a much braver person than I.

Personally I wouldn't want to be responsible for the account information of everyone playing the game. I'm sure perlmonks accounts aren't worth much to most people but this is a troll's wet dream. I assume you'd be sending the passwords from your site to Perlmonks in plain text? I hope you at least trust every system between you and perlmonks (including your own).

How these things go uncriticized on a web development site are beyond me.

Comment on Re: Re: PerlMonks MUD in progress

Replies are listed 'Best First'.
Re^3: PerlMonks MUD in progress by Coruscate (Sexton) on Jul 14, 2003 at 17:38 UTC
I assume you'd be sending the passwords from your site to Perlmonks in plain text? Yes, the same way that browsers pass the login info to the server when users login to the site :) Though passing the password in plain text would only happen once in order to grab the cookie. Then the cookie would be sent instead. A little more secure. Not perfect, but good enough I say. How these things go uncriticized on a web development site are beyond me. They don't go uncriticized. Some people don't like it, some don't really care, and some figure it's great if it allows more functionality to something. I live with the complaints :) If the above content is missing any vital points or you feel that any of the information is misleading, incorrect or irrelevant, please feel free to downvote the post. At the same time, please reply to this node or /msg me to inform me as to what is wrong with the post, so that I may update the node to the best of my ability.	[reply]

Replies are listed 'Best First'.

Re^3: PerlMonks MUD in progress
by Coruscate (Sexton) on Jul 14, 2003 at 17:38 UTC

I assume you'd be sending the passwords from your site to Perlmonks in plain text?

Yes, the same way that browsers pass the login info to the server when users login to the site :) Though passing the password in plain text would only happen once in order to grab the cookie. Then the cookie would be sent instead. A little more secure. Not perfect, but good enough I say.

How these things go uncriticized on a web development site are beyond me.

They don't go uncriticized. Some people don't like it, some don't really care, and some figure it's great if it allows more functionality to something. I live with the complaints :)

If the above content is missing any vital points or you feel that any of the information is misleading, incorrect or irrelevant, please feel free to downvote the post. At the same time, please reply to this node or /msg me to inform me as to what is wrong with the post, so that I may update the node to the best of my ability.

[reply]