|
|||||||||
|
|||||||||
|
|||||||||
 |
|||||||||
| |
||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
ASP Free Forums Sponsor:
|
|
|
|
#1
April 30th, 2006, 03:02 PM
|
||||
|
||||
|
How to create logon pages for your site
the attached zip file contains:
log on form page check logon page and a small db in access to show you how it works there is code in the check logon page to log all failed and sucessful log on's
__________________
Hope this advise helps.  If so please show your appreciation by adding reputation points (click gauge image on top right of this post and score). 
|
|
#2
May 1st, 2006, 11:42 AM
|
||||
|
||||
|
There's one primary flaw in this, it validates on the client only.
The issue lies in the fact the user can save the source to their local machine, delete the "onSubmit="return validateForm();"" in the form tag. Modify the action attribute of the form from (action="check_login.asp") to (action="http://somedomain.com/check_login.asp"), then they are perfectly capable of attempting sql injection attacks against the site. Validation of the form data should be done on both the client and server to prevent this from happening. All client-side validation can be bypassed.
|
|
#3
June 22nd, 2006, 11:44 AM
|
|||
|
|||
|
Hi,
Will you also add a forgot password part? Regards,
|
|
| Viewing: ASP Free Forums > Programming > Code Bank > How to create logon pages for your site |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
 |
|
|
|
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
