autologin script

Results 1 to 2 of 2

Thread: autologin script

  1. #1
    Join Date
    Dec 1969

    Default autologin script

    Anyone know of a good example of autologin with cookies that does not store the password in it? All the examples I have seen say this is bad to store the password with the username in the cookie to be secure, yet the example does just that. Also, anyone know how to encrypt the values like yahoo does it's login cookies?

  2. #2
    Join Date
    Dec 1969

    Default RE: autologin script

    FYI - this doesn't offer you any more protection. Anyone that can steal the contents of the cookie can place it in a cookie of their own and impersonate the user. It would simply mean the hacker wouldn't know the actual password, but that doesn't matter b/c they will be auto logged in.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts