Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Oracle Web Application Server

Re: Oracle Web Application Server

From: <bons001_at_my-dejanews.com>
Date: Thu, 30 Jul 1998 06:34:04 GMT
Message-ID: <6pp44s$ukq$1@nnrp1.dejanews.com>

> >1. Normal web Form which prompts for username and password.
> >2. Lookup username and password in password table and verify.
> >3. Set a cooky with the users ID.
>
> That's very dangerous though ... the method described in the last post
> worked a treat and very simply. Not wanting to sound rude and I do
> appreciate your post, but I really would recommend having a look at
> re-writing the OWA_INIT package.

> The method you describe could very easily be monitored using a packet
> sniffer. If you are using cookies it sounds like you are completely
> intranet, hence it's not too bad, but my DB is going to be accessed by
> 25,000 users from around the world via HTTP, hence I needed the basic
> HTP authentication system :)

I agree the method I am using is not very secure. and the system will be internet based.

-----== Posted via Deja News, The Leader in Internet Discussion ==----- http://www.dejanews.com/rg_mkgrp.xp Create Your Own Free Member Forum Received on Thu Jul 30 1998 - 01:34:04 CDT

Original text of this message

HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US