Jump to content
old guy

Secure pages & log in

Recommended Posts

Hi,

 

I'm new to writting code & looking to write a couple of secure web pages. One where you can log in & out securely using a password. Then a second where you can upload & download some files or folders.

 

Any help on where to start, what code (asp/etc) & what best method(s) of encryption I should use? Thanks for any help or advice.

 

Old Guy.

Share this post


Link to post
Share on other sites

The choice of server-side language isn't too relevant but there are a vast number of design considerations. You can find guidelines listed on pages such as OWASP. The complexity of the problem is such that it is really outside the realm of the beginner (to do it all correctly). To get a taste of this you might look at the short OWASP YouTube series which is an overview...

 

https://www.youtube.com/watch?v=CDbWvEwBBxo

Share this post


Link to post
Share on other sites

Thanks Guys,

 

Great info resources. I understand that security is a very complex issue, as possible attacks can come in many forms. But I need to start to learn some basics somewhere, so will give it a go. The OWASP site is full of great info & the clips very helpful too. Thanks, I'm sure I will be asking for some more specific coding help in the near future.

Share this post


Link to post
Share on other sites

Yes, I didn't intend to make it sound impossible, but I wanted you to see the enormity of the real problem.

 

For educational purposes you could start experimenting with,,,

 

1. The need to sanitize and validate all external data.

2. The use of parameterized database queries.

3. The hashing and salting of passwords before they are stored in a database.

4. The methods that avoid the e-mailing of lost passwords.

5. The use of "least privilege" to minimize user threats.

6. The avoidance of known security holes.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...