Re: Protecting webdelivery

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 11885
interpreted = N
texte = Reply To: RE>>Protecting webdeliveryGrant Hulbert said: > I assume the scenario you're trying to prevent is this: > > 1) A hacker discovers the cart id during the non-SSL session, by > using packet-sniffing software > 2) The hacker uses this [cart].html as a URL to get to the webdelivery > meant for someone else, by going to that URL during a 24-hour period > after they think the card was clearedThat's the concern - (un)founded or not. I'll give your tips a whirl and see what flies out. Hadn't thought of that on-the-fly lookup technique... much cleaner than my original idea, and quite a bit simpler too. THANKS MUCH!Dan Keldsen - djk@delphigroup.com Director, I.S. - webmaster@delphigroup.com Delphi Consulting Group, Inc. - http://www.delphigroup.com/ 100 City Hall Plaza - ph: 617-247-1511 Boston, MA 02108-2106 - fax:617-247-4957 Associated Messages, from the most recent to the oldest:

    
  1. Re: Protecting webdelivery (Dan Keldsen 1997)
  2. Re: Protecting webdelivery (Grant Hulbert 1997)
  3. Protecting webdelivery (Dan Keldsen 1997)
Reply To: RE>>Protecting webdeliveryGrant Hulbert said: > I assume the scenario you're trying to prevent is this: > > 1) A hacker discovers the cart id during the non-SSL session, by > using packet-sniffing software > 2) The hacker uses this [cart].html as a URL to get to the webdelivery > meant for someone else, by going to that URL during a 24-hour period > after they think the card was clearedThat's the concern - (un)founded or not. I'll give your tips a whirl and see what flies out. Hadn't thought of that on-the-fly lookup technique... much cleaner than my original idea, and quite a bit simpler too. THANKS MUCH!Dan Keldsen - djk@delphigroup.com Director, I.S. - webmaster@delphigroup.com Delphi Consulting Group, Inc. - http://www.delphigroup.com/ 100 City Hall Plaza - ph: 617-247-1511 Boston, MA 02108-2106 - fax:617-247-4957 Dan Keldsen

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Sale on wholesale programming services ... (2006) [WebDNA] XML Parsing Error Help (2010) Some Questions (1997) A multi-processor savvy WebCatalog? (1997) Reversed words (1997) PCS Frames-Default page is solution! (1997) form crasehes server (1997) absolute paths for databases? (1997) Using Checkbox (2000) WebCat2 beta 11 - new prefs ... (1997) [CART] (1997) Double Spacing in Mails from Sendmail (2002) Remove me from your list immeadiately (1998) Re requiredFields parameter (1998) Umm...about those log files? (Off Topic) (1997) Searching help needed (1998) webcat2b12 CGI -- Date comparisons (1997) Help with sorting search results sorting (1998) Checkboxes (1998) showif and cart (1997)