Internet
Seminar

Spring 2019
course
site

Thu March 7

Questions about anything? Are you clear about the upcoming assignment?

Some security issues

(Security is a huge topic - this just scratches the surface of a few things related to the back-end-php-forms that we're doing now. But for a lot of the web stuff, one good way to understand the details is to read about how it can be broken ...)

Some php tricks

sessions

PHP has some built-in session stuff ... but you may want to do this yourself explicitly with a cookie - at least as a learning experience.

There are several different approaches to what to put into the cookie in order to extract some persistent data that can be used to keep track of someone visiting your site.

Note that being logged in is not the same as have a session ...

Why (or why not) shouldn't you just use PHP's $SERVER['REMOTE_ADDR'] for sessions?

What does it mean to say that "HTTP is a stateless protocol ..." ?

How (where and what) should you store the information that a user is logged in?

https://cs.marlboro.college /cours /spring2019 /internet /notes /security1
last modified Tue December 3 2024 5:13 pm