PHPBuilder.com, the best resource for PHP tutorials, templates, PHP manuals, content management systems, scripts, classes and more.

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Hiermenus
DatabaseJournal
Technology Jobs

IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

Covalent Extends Apache 2.0 to Microsoft ASP.NET
ShopWorX - Support for Windows
PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1
Network Risk Assessment
Full-Featured, Java-Based Apache GUI

Partners & Affiliates

Transforming XML with XSL using Sablotron
Create an LDAP Address Book
Preventing Web Attacks with Apache
Beginning Ajax with PHP: From Novice to Professional
In Case You Missed It...The Week of March 26, 2006

Re: [PHP] Re: B2B site From: Abe Asghar (abe <email protected>)
Date: 09/29/00

Next message: Radu Filip: "[PHP] OCIPLogon (fwd)"
Previous message: Michael Hall: "[PHP] Re: B2B site"
In reply to: Michael Hall: "[PHP] Re: B2B site"
Next in thread: Michael Hall: "Re: [PHP] Re: B2B site"
Reply: Michael Hall: "Re: [PHP] Re: B2B site"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Yes. The forms will be validated - cookies or sessions will be used. And
our server is managed outside and it's security is also managed outside. My
concer is the working of the web site.

Thanks
Abe
----- Original Message -----
From: "Michael Hall" <mulgaweb%mulga.com.au <email protected>>
To: "Abe Asghar" <abe <email protected>>
Sent: Friday, September 29, 2000 11:32 AM
Subject: Re: [PHP] B2B Site

> I am in no way an expert about security, but I think it is true to say
that
> secure/encrypted connections like SSL can give a false sense of security
> because they probably do little to protect data sitting on a badly
> configured server. They should be treated as only one part of a
> comprehensive security approach ... so yes, there probably are great deal
> more security concerns that you should be thinking about. Like your forms
> for example ... will you be validating input adequately?
>
> Michael Hall
>
> ----- Original Message -----
> From: Abe Asghar <abe <email protected>>
> To: <php-general <email protected>>
> Sent: Friday, September 29, 2000 7:26 PM
> Subject: [PHP] B2B Site
>
>
> > Hi Guys,
> >
> > It looks pretty likely that I will be working on a site with a catalogue
> > that allows suppliers and buyers to log in and add products.
> >
> > The site must be secure in how it handles people logging in. If the
site
> is
> > put over a secure connection then does that mean that it is secure as
this
> > encrytps data between the server and the browser. Then when the users
> want
> > to download orders they can log in and download them over a secure
> > connection.
> >
> > I will not be sending them the order by email as this is not secure.
Does
> > this sound genereally secure enough?
> >
> > Or are there a great deal more security concerns that I should be
thinking
> > about.
> >
> > Thanks,
> >
> > Abe
> >
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, e-mail: php-general-unsubscribe <email protected>
> > For additional commands, e-mail: php-general-help <email protected>
> > To contact the list administrators, e-mail: php-list-admin <email protected>
> >
>

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-general-unsubscribe <email protected>
For additional commands, e-mail: php-general-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>

Next message: Radu Filip: "[PHP] OCIPLogon (fwd)"
Previous message: Michael Hall: "[PHP] Re: B2B site"
In reply to: Michael Hall: "[PHP] Re: B2B site"
Next in thread: Michael Hall: "Re: [PHP] Re: B2B site"
Reply: Michael Hall: "Re: [PHP] Re: B2B site"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]