subject:"\[PHP\-DB\] Re\: Definitive answer for large scale registration\/authentication"

[PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-16 Thread Brad Hubbard

On Tue, 16 Apr 2002 23:18, Michael Kimsal did align ASCII characters thusly: > I guess the first thing you should help us with is defining "high > volume". :) 1/sec? 100 sec? Actually, this will probably have less > impact on archictecture than hardware, but I'm always curious as to what > 'hi

[PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-16 Thread Michael Kimsal

Brad Hubbard wrote: > Can I get some feedback on the conventional wisdom as to the best solution > for high volume registration and authentication of users accessing a secure > site? I have worked before with database/session based methods as well as > htaccess. Which is preferred? Are there al

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-16 Thread Manuel Lemos

Hello, Brad Hubbard wrote: > > On Tue, 16 Apr 2002 14:51, Manuel Lemos did align ASCII characters thusly: > > > > then stored in cookie. The security weakness of this method is that if > > > > the secret key leaks, hackers may use to forge new sessions. > > > > > > Is this documented anywhere? >

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-15 Thread Brad Hubbard

On Tue, 16 Apr 2002 14:51, Manuel Lemos did align ASCII characters thusly: > > > then stored in cookie. The security weakness of this method is that if > > > the secret key leaks, hackers may use to forge new sessions. > > > > Is this documented anywhere? > Anyway what part didn't you > understand

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-15 Thread Manuel Lemos

Hello, Brad Hubbard wrote: > > On Tue, 16 Apr 2002 14:01, Manuel Lemos did align ASCII characters thusly: > > Probably the fastest way to keep session profile information is by > > serializing the data array into a string that will be encrypted and then > > stored in cookie. The security weaknes

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-15 Thread Brad Hubbard

On Tue, 16 Apr 2002 14:01, Manuel Lemos did align ASCII characters thusly: > Probably the fastest way to keep session profile information is by > serializing the data array into a string that will be encrypted and then > stored in cookie. The security weakness of this method is that if the > secre

[PHP-DB] Re: Definitive answer for large scale registration/authentication

2002-04-15 Thread Manuel Lemos

Hello, Brad Hubbard wrote: > > Can I get some feedback on the conventional wisdom as to the best solution > for high volume registration and authentication of users accessing a secure > site? I have worked before with database/session based methods as well as > htaccess. Which is preferred? Are

[PHP-DB] Re: Definitive answer for large scale registration/authentication

[PHP-DB] Re: Definitive answer for large scale registration/authentication

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

Re: [PHP-DB] Re: Definitive answer for large scale registration/authentication

[PHP-DB] Re: Definitive answer for large scale registration/authentication

7 matches

Site Navigation

Mail list logo

Footer information