How Safe is This - Help

[gazalec]

Hi i was just wondering if you guys think this is secure or not, and any advice would be helpful. Well i have a customer login and the usernames and password are located on a MySQL database and when someone enters their username and password and then a query searching the table to match the username and password then gives a ref number which is then transferred into a URL using the Header(); option, at present each customer have their own folder and there is a security hole where on the url someone can change their folder name to another but i plan on getting round that by using .htaccess just wondering if there is any major security holes i am missing and how to improve that

[Snooble]

can you give the site name. I will check it for injections.

Snooble

[gazalec]

it aint uploaded yet i want to get rid of all the security problems first

[Snooble]

ok well there's a lot of possible ways to manipulate script. The only way i could check is when it's online. But i suggest you just BETA it until you can iron out the errors.

Snooble

[gazalec]

ok thanks

[trq]

Passing a reference number around the url is insecure. Why aren't you using sessiosn to log a user in? While not foolproof, they are alot stronger then what you presently have in place.

[Snooble]

session riding could easily occur if users have access to files hosted on your server. But thorpe is right. It would incur much less.

[gazalec]

no wot i mean is that if a customer number was 0800 then the username is 0800 the password is their password the ref would be 0800, so the url is then www.blahblah.com/customers/0800/index.htm it's not secret or anything i'm only novice level PHP user that why i'm asking for help and i was just wondering is there anyway the MySQL database can be downloaded?

[Snooble]

simpley, no. But that's with my abilities.

Snooble

[gazalec]

well could anyone help me out with a secure login system because i cant come up with anything else