Re: Best practices for secure persistent login?


laziness, impatience, and hubris
	PerlMonks

Re: Best practices for secure persistent login?

by perrin (Chancellor)

on May 27, 2009 at 17:53 UTC ( [id://766483]=note: print w/replies, xml )

Need Help??

in reply to Best practices for secure persistent login?

The common practice is to use a unique ID and use an SHA1 digest with a secret salt to prevent tampering with the ID. No need to build your own when CGI::Session is already there.

Comment on Re: Best practices for secure persistent login?

Replies are listed 'Best First'.
Re^2: Best practices for secure persistent login? by Xenofur (Monk) on May 27, 2009 at 22:01 UTC
Thanks for pointing me at that, I'd completely forgotten about it. :)	[reply]

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://766483]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others drinking their drinks and smoking their pipes about the Monastery: (5)

As of 2024-04-16 13:34 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found