chrisuk Posted June 25, 2007 Share Posted June 25, 2007 I've been working on beefing up the security on my login script and I think I have most things covered What I would like is for someone to try and break it... the link is here: http://www.yump.co.uk/stuff/login.php if you successfully manage to login you will simply get the message "login success!" Otherwise you will get an error....but the error messages arn't supposed to be helpful there is also an index.php page protected by sessions Thanks! Link to comment https://forums.phpfreaks.com/topic/57056-security-challenge/ Share on other sites More sharing options...
rameshfaj Posted June 27, 2007 Share Posted June 27, 2007 Its simply silly to test such stuff. First mention if the query broke down while testing urself? or mention the code so that we can analyse the code. Link to comment https://forums.phpfreaks.com/topic/57056-security-challenge/#findComment-283835 Share on other sites More sharing options...
JasonLewis Posted June 27, 2007 Share Posted June 27, 2007 you'd need to ask hackers because i tried a few things to break in but it didnt work. Link to comment https://forums.phpfreaks.com/topic/57056-security-challenge/#findComment-283856 Share on other sites More sharing options...
corbin Posted June 27, 2007 Share Posted June 27, 2007 It would be easier to test if we knew the code, or if we had an account that works. For example: maybe cookie altering is possible because you're storing user id's in cookies instead of usernames and passwords. Also, login scripts are pretty basic in their core, so unless you make a beginer's mistake, there's really not much that can go wrong. Link to comment https://forums.phpfreaks.com/topic/57056-security-challenge/#findComment-284362 Share on other sites More sharing options...
Recommended Posts