Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Oracle Web Application Server

Re: Oracle Web Application Server

From: <bons001_at_my-dejanews.com>
Date: Thu, 30 Jul 1998 06:34:04 GMT
Message-ID: <6pp44s$ukq$1@nnrp1.dejanews.com> 






> >1. Normal web Form which prompts for username and password.


> >2. Lookup username and password in password table and verify.


> >3. Set a cooky with the users ID.


>


> That's very dangerous though ... the method described in the last post


> worked a treat and very simply.  Not wanting to sound rude and I do


> appreciate your post, but I really would recommend having a look at


> re-writing the OWA_INIT package.





> The method you describe could very easily be monitored using a packet


> sniffer.  If you are using cookies it sounds like you are completely


> intranet, hence it's not too bad, but my DB is going to be accessed by


> 25,000 users from around the world via HTTP, hence I needed the basic


> HTP authentication system :)





I agree the method I am using is not very secure. and the system will be
internet based.




-----== Posted via Deja News, The Leader in Internet Discussion ==-----
http://www.dejanews.com/rg_mkgrp.xp   Create Your Own Free Member Forum
Received on Thu Jul 30 1998 - 01:34:04 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US