[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

WWW User authentication

To: [email protected]
Subject: WWW User authentication
From: [email protected] (Brian C. Lane)
Date: Tue, 09 Apr 1996 14:35:54 GMT
Organization: Nexus Computing
Sender: [email protected]


  I just finished writing a cgi script to allow users to change their login
passwords via a webpage. I currently have the webpage being authenticated
with the basic option (uuencoded plaintext). MD5 would be nicer, but how
many browsers actually support it?

  When the user changes their password, the form sends their name, old
password, and new password with it, in the clear. This is no worse than
changing your password across a telnet connection, but I'd like it to be
more secure, but useable by a large number of browsers.

  Any advice?

    Brian

------- <[email protected]> -------------------- <http://www.aa.net/~blane> -------
  Embedded Systems Programmer, EET Student, Interactive Fiction author (RSN!)
==============  11 99 3D DB 63 4D 0B 22  15 DC 5A 12 71 DE EE 36  ============

Follow-Ups:
- Re: WWW User authentication
  - From: Jeff Barber <[email protected]>
- Re: WWW User authentication
  - From: Jeremey Barrett <[email protected]>

Prev by Date: Re: Bank transactions on Internet
Next by Date: WRY_cfp
Prev by thread: Subject: Re: They're running scared.
Next by thread: Re: WWW User authentication
Index(es):
- Date
- Thread