Well, the website use both port 80 and port 443. The public access the
website freely, so blocking them is not an option beside they don't know the
true IP address behind the firewall for them to access the administration
website. We don't have Intranet for the administration website to be used.
On Fri, 5 Jul 2002, Scott Fletcher wrote:
> We also use the "$_SERVER['REMOTE_ADDR'] to allow only the credit bureau
> employee to log in to the administration website that is if the
> employee's machine is at the credit bureau place. This help with some
> security but not a full security because
Well! The credit bureau website I maintain. We don't use cookie because it
doesn't help when the user had it turned off. We do compile OpenSSL and
Libmcrypt with PHP, so we can check to see if the web browser is 128 bits
and not below that. The PHP code for that is
"$_SERVER['SSL_CIPHER_USEKEY
On Fri, 5 Jul 2002, Kondwani Spike Mkandawire wrote:
> Quick Question on Cookies vs. IP Number:
>
> They appear to be easy to set (well at least in PHP), hence quite
> easily to get around (The user of your Site simply deletes the
> Cookie on his Hard Drive...) In Konqueror you are actually
> gi
I've typically seen the use of a login / cookie in tracking users and
providing security.
-Original Message-
Quick Question on Cookies vs. IP Number:
They appear to be easy to set (well at least in PHP), hence quite
easily to get around (The user of your Site simply deletes the
Cookie
Quick Question on Cookies vs. IP Number:
They appear to be easy to set (well at least in PHP), hence quite
easily to get around (The user of your Site simply deletes the
Cookie on his Hard Drive...) In Konqueror you are actually
given the option of rejecting cookies... Using
getenv($REMOTE_ADDR
6 matches
Mail list logo
