security problem

Results 1 to 2 of 2

Thread: security problem

  1. #1
    ASP Developer Guest

    Default security problem

    im writing this web base application that logs on a user with their username and password. how do i keep from storing all the viewed pages in their history? someone could just walk right in,open a valid user&#039s history file and login! ive tried everything from meta experation dates,to deleting the cache,to playing around with the history object. and made all the links window.location.replace(URL). anyone have any suggestions??

  2. #2
    Join Date
    Dec 1969

    Default RE: security problem

    not much you can do about it, except to note that all login procedures should be done with mmethod=post, so that user details don&#039t appear in querystrings<BR><BR>if the user doesn&#039t clear this history, it&#039s their problem<BR><BR>jason

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts