Code Comments

Programming Forum and web based access to our favorite programming groups.
For Programmers: Free Programming Magazines | New: Database administration forum
Registration is free! Edit your profileCalendarFind other membersFrequently Asked QuestionsSearch -> 
Code Comments > PHP > PHP DB >

Re: [PHP-DB] Question on Registration Method


Post New Thread











Thread
Author
Re: [PHP-DB] Question on Registration Method
On Sunday 26 September 2004 19:45, Stuart Felenstein wrote:

> While I'm okay with mine, not completely satisfied.
> I'd like to change it to the type where like above the
> username and password is sent via email, but with the
> addition of a link in the email whereby the user must
> click on link to be "activated".  You probably have
> seen this, but to spell it out - even though they have
> the user name and password it somehow is not good
> enough to login with until this "activation" takes
> place.

Can someone please enlighten me on what extra security this method provides
over and above the following more simple methods:

- Send user a system generated password with which they can login and
subsequently change.

- Send user an activation link which once clicked on would activate them and
allow them to choose a password.

--
Jason Wong -> Gremlins Associates -> www.gremlins.biz
Open Source Software Systems Integrators
* Web Design & Hosting * Internet & Intranet Applications Development *
------------------------------------------
Search the list archives before you post
http://marc.theaimsgroup.com/?l=php-db
------------------------------------------
/*
Believe everything you hear about the world; nothing is too impossibly bad.
-- Honor'e de Balzac
*/

Report this thread to moderator Post Follow-up to this message
Old Post
Jason Wong
09-26-04 08:55 PM

Re: [PHP-DB] Question on Registration Method
How are they any different?

I'm seeing the same thing as your method.

Stuart
--- Jason Wong <php-db@gremlins.biz> wrote:

> On Sunday 26 September 2004 19:45, Stuart Felenstein
> wrote:
> 
> satisfied. 
> the 
> the 
> must 
> have 
> have 
>
> Can someone please enlighten me on what extra
> security this method provides
> over and above the following more simple methods:
>
> - Send user a system generated password with which
> they can login and
> subsequently change.
>
> - Send user an activation link which once clicked on
> would activate them and
> allow them to choose a password.
>
> --
> Jason Wong -> Gremlins Associates ->
> www.gremlins.biz
> Open Source Software Systems Integrators
> * Web Design & Hosting * Internet & Intranet
> Applications Development *
> ------------------------------------------
> Search the list archives before you post
> http://marc.theaimsgroup.com/?l=php-db
> ------------------------------------------
> /*
> Believe everything you hear about the world; nothing
> is too impossibly bad.
> 		-- Honor'e de Balzac
> */
>
> --
> PHP Database Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

Report this thread to moderator Post Follow-up to this message
Old Post
Stuart Felenstein
09-26-04 08:55 PM

Re: [PHP-DB] Question on Registration Method
On Monday 27 September 2004 03:01, Stuart Felenstein wrote:
> How are they any different?
>
> I'm seeing the same thing as your method.

These two methods are separate:
 

OR
 

What is the advantage in sending someone a password AND making them click on
 a
link to activate?

--
Jason Wong -> Gremlins Associates -> www.gremlins.biz
Open Source Software Systems Integrators
* Web Design & Hosting * Internet & Intranet Applications Development *
------------------------------------------
Search the list archives before you post
http://marc.theaimsgroup.com/?l=php-db
------------------------------------------
/*
A countryman between two lawyers is like a fish between two cats.
-- Ben Franklin
*/

Report this thread to moderator Post Follow-up to this message
Old Post
Jason Wong
09-26-04 08:55 PM

Re: [PHP-DB] Question on Registration Method
$_GET['activation_hash] is missing the end '


On Mon, 27 Sep 2004 03:20:22 +0800, Jason Wong <php-db@gremlins.biz> wrote:
> On Monday 27 September 2004 03:01, Stuart Felenstein wrote: 
>
> These two methods are separate:
> 
>
> OR
> 
>
> What is the advantage in sending someone a password AND making them click 
on a
> link to activate?
>
> --
> Jason Wong -> Gremlins Associates -> www.gremlins.biz
> Open Source Software Systems Integrators
> * Web Design & Hosting * Internet & Intranet Applications Development *
> ------------------------------------------
> Search the list archives before you post
> http://marc.theaimsgroup.com/?l=php-db
> ------------------------------------------
> /*
> A countryman between two lawyers is like a fish between two cats.
>                 -- Ben Franklin
>
>
> */
>
> --
> PHP Database Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>



--
Joseph Crawford Jr.
Codebowl Solutions
codebowl@gmail.com
802-558-5247

For a GMail account
contact me OFF-LIST

Report this thread to moderator Post Follow-up to this message
Old Post
Joseph Crawford
09-27-04 01:55 AM

Sponsored Links



Last Thread Next Thread Next
Search this forum -> 
Post New Thread

PHP DB archive

Show a Printable Version Send to friend Email This Page to Someone! subscribe to this thread Receive updates to this thread
Computer Consultants
Programming Jobs
Visual Basic Controls
SQL Server Programming
Webservices
Java Security
Visual Studio
C# Programming
Visual J++
Software engineering
Open source Software
Perl Programming
PHP Programming
ASP Programming
ASP .NET Programming
Visual Basic Programming
Windows Scripting Host
Java Programming
Java Help
Java Beans
VBScript
Cobol
MAC Applications
Unix Programming
Forum Jump:
All times are GMT. The time now is 05:26 PM.

 
Free MCSE Braindumps | Real Estate Topics
Programming forum archive

Copyrights CodeComments.com 2004 - 2006

Powered by vBulletin Copyright 2000-2006 Jelsoft Enterprises Limited.