Jump to content

php form: method="POST" - security


quasiman

Recommended Posts

I'm starting out to make a system for people to save login/password information to a database (mysql) - basically a place to check all their pop3 email accounts from one login on my system.

I'll need the passwords in plain text so they can be passed correctly to the server for login details(IE: not md5), is it safe to post passwords through a hidden field form?
Link to comment
Share on other sites

No. People will be able to see them by doing a show source. Using sessions are a little more secure, but since sessions are stored in files, they can be read.

We'll need a little more information before we can advise you how to do this securely.

Ken
Link to comment
Share on other sites

[!--quoteo(post=369403:date=Apr 27 2006, 07:06 PM:name=kenrbnsn)--][div class=\'quotetop\']QUOTE(kenrbnsn @ Apr 27 2006, 07:06 PM) [snapback]369403[/snapback][/div][div class=\'quotemain\'][!--quotec--]
No. People will be able to see them by doing a show source. Using sessions are a little more secure, but since sessions are stored in files, they can be read.

We'll need a little more information before we can advise you how to do this securely.

Ken
[/quote]

The users would need to first create an account and login, then they would only see their own details for each page. Using foreign keys to have seperate tables for my users and their pop3 login details. If a person isn't logged in, they wouldn't see anything about it in the source.


Sorry I wasn't more clear...
Link to comment
Share on other sites

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.