Perl: the Markov chain saw | |
PerlMonks |
Re: Re: Hacking "explained"by Dog and Pony (Priest) |
on Oct 22, 2002 at 13:41 UTC ( [id://207071]=note: print w/replies, xml ) | Need Help?? |
Funny, I mentioned exactly that example when post-discussing with hackmare. :) Mix the User-Agent with the pw before encrypting and the attacker must use or simulate the exact same browser. Just obscurity, yes, but better than nothing. :)
Using IP, as some would suggest, is generally a bad method, as it changes (sometimes every request) for lots of people. You have moved into a dark place. It is pitch black. You are likely to be eaten by a grue.
In Section
Perl Monks Discussion
|
|