The KGB Oracle Forums The KGB Great Hall of History (ARCHIVE) Darkfall Members Forum Question about MySql, need help

LOL

Good post Zarad! I will typical set my website paswords to: ";DROP TABLE Users" just for some good clean fun ...

Well as I have it set up now, it passes login info from a submit form to my admin.php. On the admin site before I generate any html it validates the username and password.

Should I be validating the login info on like another .php page then after that passes then going to the admin page.

IE

login.htm (submit form) -> validate.php -> admin.htm

I guess my question is trying to figure out to not let admin.htm appear to users at all unless the password is validated. Yeah my steps from login.htm to validate.php I can do. But I can still directly goto admin.htm and bypass the login process.

Id post my code but my schools servers are all down for maintenance.



So you are saying that my actual admin.htm needs to have a check and if it fails take them away to another page?

Also zarad mentioned sql injection. Some guy in my class just did that to my professors website and we were able to just login with like admin access. How can you prevent that?


could I just add a redirect

in the code that validates the password and just take people away that dont have the password?

you figure this out yet?

What I do it set a sessions when they log in and a session with thier security level. I can later test those values to decide what to display or if they should redirected away (like back to login page).

On login page I set 'validX' (tells me they logged in)
$_SESSION['validX'] = 'validX';

I also check a table for thier security level
$rs = $db->Execute("select * from user_table where name = '$user';");
while (!$rs->EOF) {
$level = $rs->fields[3];
$_SESSION['level'] = $level;
$rs->MoveNext();
}

Than on a html page I can check the value to decide to display it or redirect them. I use the same method for setting search terms as well.

// Authorization check
if (!isset($_SESSION['validX']))
{
$redirect_url = "index.php";
header("Location: $redirect_url");
}

// Security level check.
if ($_SESSION['level'] <> 14) {
$redirect_url = "index.php";
header("Location: $redirect_url");
}



http://us2.php.net/manual/en/book.session.php

Very solid approach!

Yeah got it all done. Was a moderately fun project. I would have done things totally different after finishing it, but hey that's good to know. Especially things involving organization with tables working with different keys and views how to integrate javascript with PHP/HTML a little differently than I am used to.

Thanks a ton for your help, It is due in 29 minutes. 11:59pm est.

That authentication can be cookie spoofed easy as pie. Just fyi.

Using what method? Neither Security , nor web programming are my areas of expertise, but the limited attempts I have tried failed.

You'd have to be pretty sophisticated to cookie spoof a session from the server ... for a class project, it should fly through with no problem.

Most of the teachers out there can't even tell you where a cookie is located on the file system ... if you really had to lock down a site, I'd definately use an alternative authentication method then PHP & MySQL