hahaha - I really do love those guys - who pry, probe, twist and then share. It keeps the dogs in line.
Thanks for the update James on Flash decompilers. Gordon... You are right - close the door and pass keys instead of opening the door to all and hide the key under the mat. Jackson On 6/20/06, James Keeline <[EMAIL PROTECTED]> wrote:
--- Jackson <[EMAIL PROTECTED]> wrote: > Build your login page in FLASH. The source is not available. Unless they > know how you are authenticating - file or database - they have a long way to > get in. > > There is a very simple one at www.genyousbiomed.com look and hack if you > like. > > Jackson I suggested Flash as well. However, it is worth noting that there are Flash decompilers (one for MacOS X is cleverly called "Gordon") which could reveal the form variables. Also, any good packet sniffer could pick up the HTTP request and reveal the variables. In short, anything you do is possible to be broken. I like the idea of restricting connections by IP and connections over time but I also know that IPs are routinely spoofed. Make sure your own IP is whitelisted or you may get locked out of your own application. Good security requires carefull planning. James -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-newbie
-- Jackson -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-newbie
