Join Up! 104886 members and counting!

Login To PHPBuilder User Name: Password: Register A New Site Account * NOTE: This is for logging into the main site only! To login to the forums, click here

Linux Today Enterprise Linux Today Apache Today JustLinux.com Linux Planet PHPBuilder All Linux Devices Hiermenus DatabaseJournal Technology Jobs Covalent Extends Apache 2.0 to Microsoft ASP.NET ShopWorX - Support for Windows PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1 Network Risk Assessment Full-Featured, Java-Based Apache GUI Using MySQL's Built-In Replication Zend Studio 3.0 On The Go Coding with PHPanywhere Making forms object-oriented COM Functions in PHP4

php-general | 2001092

From: Bill Lubanovic (bill <email protected>)
Date: 09/19/01

• Next message: Hoover, Josh: "[PHP] RE: [PHP-DB] Cross site authentication"
• Previous message: Sheridan Saint-Michel: "Re: [PHP] Problem with dropdownboxes allways ontop of layers!!!!! Please Help!!!!!"
• In reply to: Rick Gardner: "[PHP] Re: [PHP-DB] Cross site authentication"
• Next in thread: Evan Nemerson: "Re: [PHP] Re: [PHP-DB] Cross site authentication"
• Reply: Evan Nemerson: "Re: [PHP] Re: [PHP-DB] Cross site authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Rick Gardner wrote:
>
> Would a solution like xml-rpc work?
>
> On Wednesday, September 19, 2001, at 09:43 AM, Bill Lubanovic wrote:
>
> >
> > Customers are authenticating through an IIS server against a database on
> > Win2K. How do I securely pass this information to a separate
> > PHP/apache/UNIX system? Since any parameters could be forged, it seems
> > I'd need a cryptographic approach. Does anyone have experience with a
> > cross-platform solution (ASP/IIS/Win2K and PHP/apache/Linux)?
> >...

XML-RPC or SOAP structure the data better than GET or POST, but they
don't address the security issues. We can't send names, passwords, or
ids, no matter how we wrap them. How can platform A tell platform B
that it's authenticated someone? How can B trust A?

-- 
Bill Lubanovic
Mad Scheme Limited
-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-general-unsubscribe <email protected>
For additional commands, e-mail: php-general-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>

• Next message: Hoover, Josh: "[PHP] RE: [PHP-DB] Cross site authentication"
• Previous message: Sheridan Saint-Michel: "Re: [PHP] Problem with dropdownboxes allways ontop of layers!!!!! Please Help!!!!!"
• In reply to: Rick Gardner: "[PHP] Re: [PHP-DB] Cross site authentication"
• Next in thread: Evan Nemerson: "Re: [PHP] Re: [PHP-DB] Cross site authentication"
• Reply: Evan Nemerson: "Re: [PHP] Re: [PHP-DB] Cross site authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Columns / Articles | Tips / Quickies | News | News Linking and RSS Feeds | Shared Code Library Mail Archives | Support / Discussion Forums | Get Started! Links | Contribute! | Docs