1 Topic by AlexG (edited by AlexG 2009-02-13 08:51:35)

  • AlexG
  • AlexG
  • Administrator
  • Offline
  • From: www.deltamods.com
  • Registered: 2004-05-14
  • Posts: 1,108
  • User Karma: 6

Topic: DELTAMODS ANNOUNCES: Secure sessions and Remember me checkbox

Sessions and cookies have become two of possible features that can be exploited to perform security attacks to PHP sites like PHP Classifieds.
Sessions and cookies are not insecure by themselves, but if they are not used with a certain care, they may be eventually abused by malicious users.
Session/Cookie hijacking abuses can happen when somebody with privileged network access can sniff traffic that goes to potential victim site. Session/Cookie fixation abuses can happen when a site uses the same session identifier or cookie file for the same user before and after he authenticates to log in.

This module provides a solution to prevent these kinds of session/ccokie abuses to prevent that PHP Classifieds become compromised.

New option also added: Remember me on this website.
This option is based on secure COOKIES and allows your members to save their login password on your classifieds website.

Screenshots:
Remember me checkbox:
Remember me checkbox

AlexG's Website

Thumbs up Thumbs down

  • AlexG
  • AlexG
  • Administrator
  • Offline
  • From: www.deltamods.com
  • Registered: 2004-05-14
  • Posts: 1,108
  • User Karma: 6

Re: DELTAMODS ANNOUNCES: Secure sessions and Remember me checkbox

If you can download that code and install it on your PHP Classifieds then you may do that yourself. Nobody prevent you to develop the same mode and distribute it here. I don't sell 3rd party free code. I'm selling my module for PHP Classifieds.

AlexG's Website

Thumbs up Thumbs down

  • AlexG
  • AlexG
  • Administrator
  • Offline
  • From: www.deltamods.com
  • Registered: 2004-05-14
  • Posts: 1,108
  • User Karma: 6

Re: DELTAMODS ANNOUNCES: Secure sessions and Remember me checkbox

That code includes neither secure cookies, remember me option nor instructions how to integrate it with PHP Classifieds. But you may use it yourself and don't pay me anything. I hope you will have success.

AlexG's Website

Thumbs up Thumbs down