Integrated Windows Authentication and PHP

By Grayda
June 10, 2009 in Microsoft IIS

Start new topic

Recommended Posts

Grayda

Posted June 10, 2009

- Share

Posted June 10, 2009

I was toying around with some of the $_SERVER[] variables in PHP earlier and wondered, is it possible to spoof $_SERVER["REMOTE_USER"]? Can Joe Hacker fool PHP / IIS / Whatever into thinking that they're Bob Admin, or would this require a way of emulating Windows security? Is this superglobal property unique to IIS or is it possible via another server based security method?

No purpose, just a curious question..

Link to comment

https://forums.phpfreaks.com/topic/161633-integrated-windows-authentication-and-php/

Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

×

Browse
- Back
- Forums
- Staff
- Leaderboard
- Guidelines
- Terms of Service
Activity
- Back
- All Activity
- Search
Join our Discord!

×

Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

Sign In