Results 1 to 13 of 13

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Registered User
    Join Date: Jul:2006
    Location:
    Posts: 1,071

    Auto Login (Remember me)

    - ? , , Cookie-, ID- , Hash . .

    . , , Cookie. 3 cookies ID, ( MD5 + time() + salt( )) MD5 + SHA-1; time(). , , .

    -, , IP useragent-a, , . , IP IP (Load Balancing, Proxy). , WiFi . UserAgent- , , . .

    , , . - cookie- - .

    .. ? MD5 SHA-1 , bruteforce- ...

  2. #2
    Registered User 's Avatar
    Join Date: Feb:2006
    Location:
    Posts: 653
    , . ID- .

  3. #3
    Registered User
    Join Date: Oct:2003
    Location:
    Posts: 4,317
    , . , . . . , .

  4. #4
    Registered User
    Join Date: Jul:2006
    Location:
    Posts: 1,071
    . , , , , / , , . => logout. , . , .

  5. #5
    Pesho's Avatar
    Join Date: Nov:2001
    Location: Sofia
    Posts: 5,169
    - MD5 , . SHA1 "", , . (20+), SHA256. - .

    , id username . secure, . ( ) secure cookie - cookie, , . HMAC cookie- , . client-side ; server-side - .

    , :

    - HTTPS HTTPS-only cookies

    - IP User-Agent

    - expiration time , ; ,

    . 100% - compromised, * . , .
    , !

  6. #6
    Registered User tedych's Avatar
    Join Date: Nov:2003
    Location:
    Posts: 17,654
    ID . , , a-zA-Z0-9. 20- .
    , . - . , , , 6 12 .

  7. #7
    Registered User JACK's Avatar
    Join Date: Mar:2004
    Location:
    Posts: 651
    , . ( Firesheep )

    - a, .

  8. #8
    Registered User
    Join Date: Jul:2006
    Location:
    Posts: 1,071
    , .

    . .

    Pesho , , Google .

  9. #9
    Banned
    Join Date: Aug:2006
    Location: Sofia
    Posts: 162
    , -

    <?php
    function addcookie() {
    $nick = "saveuser";
    $var = "nick"; //
    setcookie($var,$nick,time()+360); // 99999
    }
    if (!$HTTP_COOKIE_VARS["nick"]) {
    // "nick" , .
    addcookie();

    } else { docookie(); }
    ?>

    "docookie" , ,
    , , index.php,

    Header("Location: index.php");
    function docookie() {
    $nick =
    $HTTP_COOKIE_VARS["nick"];
    }

    sam re[i kwo , , , id ip , ...

    , , mysql
    Last edited by alabamass; 10th January 2011 at 20:16.

  10. #10
    Pesho's Avatar
    Join Date: Nov:2001
    Location: Sofia
    Posts: 5,169
    Quote Originally Posted by alabamass View Post
    ...
    @mialy - . , .
    , !

  11. #11
    Banned
    Join Date: Aug:2006
    Location: Sofia
    Posts: 162
    $nick = "saveuser";, encode,
    , , , , , , , ,

    vbTheKing , , , , " ...."
    Last edited by Bombera; 11th January 2011 at 03:03.

  12. #12
    Registered User tedych's Avatar
    Join Date: Nov:2003
    Location:
    Posts: 17,654
    , " ...."
    , "" ? ?

    " id ip"
    - , . " " - , , URL ... ( , .. ...)

    "if (!$HTTP_COOKIE_VARS["nick"]) {"
    - Huh, .......

    , , .
    , , . , - , , .., .

    , . - . , " , ". session_start() - PHP . , . , - , .
    Last edited by tedych; 10th January 2011 at 23:35.

  13. #13
    Bombera's Avatar
    Join Date: Jul:2001
    Location: 4EVA
    Posts: 13,833
    , .
    EVGA X299 FTW K|i9-7960X@4.7|4x8 Patriot Viper Steel 4000|GTX 1660 Ti|970 EVO 1 TB|Seasonic Focus GX-1000|Xigmatek Elysium|
    Rampage IV Extreme BE|E5-1680v2@4.7|4x4 HyperX 1866|Cougar Aqua 240|GTX 1050 Ti|970 EVO 1/4 TB|CM 850 SilentPro|HAF-X|

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Copyright © 1999-2011 . .
iskamPC.com | mobility.BG | Bloody's Techblog | | 3D Vision Blog |