SV650.org - SV650 & Gladius 650 Forum - View Single Post - How to create a Secure Website

timwilky · 31-03-08, 02:09 PM

authentication is a real big issue. firstly do you wish to authenticate for security purposes or simply to direct appropriate content.

At its simplest you can just use a username/password combination and then use some validation script on your sever. However, even if you encrypt the password before sending it. It is still hijackable. Therefore you need to use public/private keys.

I provide on one of my applications x509 client certificates to authenticate my end users. That way they need not enter any information see http://www.urec.cnrs.fr/Distributions/modXLdapAuth/

31-03-08, 02:09 PM	#7
timwilky Member Mega Poster Join Date: Mar 2004 Location: Not in Yorkshire. (Thank God) Posts: 4,116	Re: How to create a Secure Website - Can anyone give me some pointers? authentication is a real big issue. firstly do you wish to authenticate for security purposes or simply to direct appropriate content. At its simplest you can just use a username/password combination and then use some validation script on your sever. However, even if you encrypt the password before sending it. It is still hijackable. Therefore you need to use public/private keys. I provide on one of my applications x509 client certificates to authenticate my end users. That way they need not enter any information see http://www.urec.cnrs.fr/Distributions/modXLdapAuth/ __________________ Not Grumpy, opinionated.