--- Jackson <[EMAIL PROTECTED]> wrote: > Build your login page in FLASH. The source is not available. Unless they > know how you are authenticating - file or database - they have a long way to > get in. > > There is a very simple one at www.genyousbiomed.com look and hack if you > like. > > Jackson
I suggested Flash as well. However, it is worth noting that there are Flash decompilers (one for MacOS X is cleverly called "Gordon") which could reveal the form variables. Also, any good packet sniffer could pick up the HTTP request and reveal the variables. In short, anything you do is possible to be broken. I like the idea of restricting connections by IP and connections over time but I also know that IPs are routinely spoofed. Make sure your own IP is whitelisted or you may get locked out of your own application. Good security requires carefull planning. James -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-newbie
