You can use witango to trap for missing password and proper formed email.
You can get the check for missing steps from the dev studio by just doing a
search builder and making password and email required fields. It will right
the actions out for you.
The email thing is a little more complex but I can send you the code for
validating the email for being well formed if you want.
--
Dan Stein
Digital Software Solutions
799 Evergreen Circle
Telford PA 18969
Land: 215-799-0192
Mobile: 610-256-2843
Fax 413-410-9682
FMP, WiTango, EDI,SQL 2000
[EMAIL PROTECTED]
www.dss-db.com
> From: Nicholas Froome <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> Date: Thu, 20 Mar 2003 01:18:04 +0000
> To: [EMAIL PROTECTED]
> Subject: Re: Witango-Talk: Login authentication issues
>
>> Test that 20 character limit with the = and see if it still holds it might
>> not.
>
> In my quick tests it looks as though a query with a = prefix works OK past 20
> characters, but I need to test more to be sure
>
>
>
>> Also make sure FMP does not still let them in if there is no password but
>> you can prevent that by trapping for is missing before you allow the search.
>
> I force a password on registration so this one should be safe. It'd be worth
> checking for, though
>
>
>
> This is a potential, cross-platform, minefield. Would anyone out there care to
> divulge the test procedure they use to verify security of Login systems?
>
> ________________________________________________________________________
> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
> with unsubscribe witango-talk in the message body
>
________________________________________________________________________
TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
with unsubscribe witango-talk in the message body
