|
|
|
Hi All
As the attached files show, this login system uses MD5 on clientside to encypt the password to prevent a clear text transmisson. A more secure login as it were. Currently this script stores the MD5 version of the plain text password. It is entirely possible to MD5 the already ecrypted password (double encryption, for all or a portion of the string). This is still not totally secure unless you run under SSL.
Pages include:
1. register.php --> registration with both clear and encrypted versions of the password. This is compared to the MD5 password on the server and if the client MD5 and the server MD5 match.
2. login.php --> does the login, also encrypts the password before sending it to the server
3. ep.php --> creates and emails a new temporary random password to the user's email account as set in the db
4. change_password.php --> forces the user to change the temp password the next time they log in.
Additional Files:
1. MD5.js --> is the js include file to do the encryption on the clientside
2. cust_info.sql --> is the table structure for the login table
3. conn.php --> holds the connection data and a function that gets passed the sql statement and returns the result.
Have fun and enjoy.
Bastien
|
|
| Password using php, Javascript, and html form
Categories : Security, PHP, Authentication, Java Script | | | Simple Password example
Categories : PHP, Authentication, Security, HTTP | | | PHP Function to Encrypt/Decrypt a string without a known key. The string itself has his own different key for every character.
Categories : PHP, Algorithms, Security, Authentication, Encryption | | | A damaged image generator (class) for validating text.
CAPTCHA - Completely Automated Public Turing test to tell Computers and Humans Apart
Categories : PHP, PHP Classes, Security, GD image library, Security | | | A simple PHP login script that you can modify to suite your needs. It use a session to store data in a session file submited by the page.
Categories : PHP, Sessions, Security, Authentication | | | Form Security - Match A Value For Success
Categories : PHP, Authentication, HTML and PHP, Sessions, Security | | | complete simply working javascript password generator file. Use letter, vowels, consonants (uppercase and lowercase) arrays to create a really random and secure password.
improved security using time functions to initialize random number generator.
Categories : Java Script, HTML, Security, Authentication, Strings | | | phpSecurePages is a PHP module to secures pages with a loginname and
password. It handles multiple user groups (each has own viewing rights),
store data in a MySQL database or a configuration file, and can be used to
identify Web site viewers.
Categories : PHP, Security, Authentication | | | Authenticator for Exchange Server LDAP
Categories : PHP, Authentication, LDAP, Security, Sessions | | | Use of bitmasks to represent permissions
Categories : PHP, Authentication, Bitwise Operators, Security, PHP Classes | | | Password protection for Phorum 3.1.x with userlevels and log.
Categories : PHP, MySQL, Authentication, Security | | | Using $PHP_AUTH_USER and $PHP_AUTH_PW to authenticate.
Categories : Authentication, PHP | | | Function to remember password
Categories : PHP, Authentication, Personalization and Membership | | | Basic Authentication with sessions
Categories : PHP, Beginner Guides, Authentication, Form Processing, Sessions | | | PHP4 MYSQL Authentication Script with cookie. Short & Sweet
Categories : Authentication, Apache, Cookies, PHP, MySQL | |
|
|
|
