marhoons
09-04-2007, 01:58 PM
Hello,
I am trying to scure my admin pages on my script so at first I have plan to do that.. and i want php profsional programer to let me know if theres's away to break my scure page (exploit)!
and gaide me how i can colse it..!
Step 1:
in database I stored:
user name & md5 (password)
step 2:
Login page..
simple html page that allowed user to inter user name and his passwored..
submit form..
step 3:
prosses..
get informathion from login page and check..
in database ==> compare the user & pass is allowed and has permission to enter this area
if compare is true
step 4:
creat session === >
user_passed=1
user_login=time()
and then go to allowed area..
in pages allowed area at first check the session isset & dosen't empty & user_passed==1
else
step 5:
display message (You dont have permission to enter this area try to enter your correct user name and pass. again)...
return to step 1..
however this is my plan prousedure any body can help me if there's an exploit in my plan!
thanks
I am trying to scure my admin pages on my script so at first I have plan to do that.. and i want php profsional programer to let me know if theres's away to break my scure page (exploit)!
and gaide me how i can colse it..!
Step 1:
in database I stored:
user name & md5 (password)
step 2:
Login page..
simple html page that allowed user to inter user name and his passwored..
submit form..
step 3:
prosses..
get informathion from login page and check..
in database ==> compare the user & pass is allowed and has permission to enter this area
if compare is true
step 4:
creat session === >
user_passed=1
user_login=time()
and then go to allowed area..
in pages allowed area at first check the session isset & dosen't empty & user_passed==1
else
step 5:
display message (You dont have permission to enter this area try to enter your correct user name and pass. again)...
return to step 1..
however this is my plan prousedure any body can help me if there's an exploit in my plan!
thanks