Siddartha has asked for the wisdom of the Perl Monks concerning the following question:
I have been using Perl for a while now, but still there is a lot to know.
I was thinking of using a crypt() function and check if the entered password is the same as the password in some file. That seems quite easy and straightforward. My problem is that I want to store a cookie, so people don't need to log in the whole time.
I have no idea what to store in the cookie. Just the username? And what about when it expires?
I would love a few examples, like what Perlmonks stores in the cookie. It looks like the Username and an encrypted password.
Is that secure?
I have been searching on the web, and it is scary the crap people try to disguise as password scripts, with the password hardcoded into the script etc.
-Siddartha
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: User authentication
by mikeB (Friar) on Jul 24, 2001 at 19:11 UTC | |
by Siddartha (Curate) on Jul 25, 2001 at 12:40 UTC | |
Re: User authentication
by sifukurt (Hermit) on Jul 24, 2001 at 20:57 UTC | |
by Snuggle (Friar) on Jul 24, 2001 at 21:40 UTC | |
Re: User authentication
by Snuggle (Friar) on Jul 24, 2001 at 19:51 UTC | |
by Siddartha (Curate) on Jul 25, 2001 at 12:49 UTC | |
Re: User authentication
by traveler (Parson) on Jul 24, 2001 at 21:34 UTC | |
by mikeB (Friar) on Jul 24, 2001 at 22:42 UTC |