preventing login hack!!

D

dualshock03

Well-known member
Joined
Jan 28, 2007
Messages
105
Programming Experience
1-3
can you give us a solution for avoiding login hack...PROBLEM:a certain user just copy the exact url after loging in the system and paste it in a blank address bar for another browser to log in with out using the log in form...HOW CAN WE AVOID THIS....PLEASE SEND SOME SOLUTION FOR THIS..THANK YOU
 
Sort by date Sort by votes
You shouldn't have enough information in the URL in the address bar to allow someone to login/use the session...

Make sure your login form is using POST and not GET (you don't need to worry about this with ASP.NET if you are using a form runat="server").

Store information in session variables about the login, not in URLs.
 
Upvote 0 Downvote

Similar threads

RobertAlanGustafsonII
  • Solved
Question How can my desktop app download and install another app?
Replies
5
Views
1K
RobertAlanGustafsonII
RobertAlanGustafsonII
D
  • Question
Question Issue with SSLStream Responses
Replies
0
Views
2K
digitaldrew
D
G
  • Question
Question How to create multiple user accounts in database
Replies
3
Views
2K
chrisjlocke1
chrisjlocke1
D
  • Solved
Resolved Question About While/Do While Loop
Replies
8
Views
2K
digitaldrew
D
L
  • Solved
An error occurs during parsing JSON data
Replies
4
Views
4K
LikeVBDotNet
L

Share this page

Latest posts

Back
Top