Coffee Talk: User Authentication, Mcrypt, SSL, & Curl.

[ridiculous]

Welcome to another episode of Coffee Talk. Have a Krispy Kreme, get sophisticated with a latte, and prepare to challenge yourself.

 

Today we're going to talk about the cheapest, most elegant manner in which to securely encrypt customer logins to and purchases at your online storefront.

 

A.  The Facts.

 

-You're running PHP as a CGI, MySQL, and you don't have root access.

 

-You don't have hundreds of dollars to pay for an SSL certificate.

 

-You don't want to use a self-signed SSL certificate.

 

-You've read all those circa 2002 tutorials on how to retrieve a username

and password from a db, match them, and check if they're set as variables.

 

You wonder if that's good enough. You wonder...if there's more.

That's because you want big-time security like Bjork wants "Big-Time Sensuality".

 

B. The Answers.

 

 

You sit back in your desk chair and comtemplate the possibilities that CURL, OpenSSL, Mcrypt, PHP and other machinations could have in store for you. A raven flies into the room and your mind drifts to Edgar Allen Poe. Then you focus and answer the question.

 

 

[ridiculous]

Coffee Talk needs participants.