All geek questions in one place

Ideas in a very simple but secure entry

I want a very simple login feature integrated on my server. It will be used with only one page. You upload files to the server. I am using Linux at the moment. Does anyone have an idea of ​​where I could get an idea of ​​where to start. I have an HTTPS / SSL certificate on the server so that it helps. But I really don't want to get complicated, enough to stay safe. Ideas? I hope I'm in the right place. I would like to use PHP for this. The goal is to create a login without using SQL, perhaps because it is intended for only one or two users.

0
source share
4 answers

Sort of,

$hash = "precomputed hash of your password"; if (crypt($_POST['password'], '$6$rounds=5000$usesomesillystringforsalt$') == $hash) { ... }

No database required.

0
source

You can simply use htaccess to password protect the directory (cpanel / plesk make this easy to do) or provide your users with an FTP account to upload files.

It could be quickly and easily configured, and FTP was more secure (subject to a reasonable password).

0
source

I can add that you can track your login using data leak detection tools. For example, I use Hivecode . This does not make the login more secure, but it tracks access to digital resources and helps to know exactly if any intrusions are taking place and if anyone else has access to your resources. I have already discovered the theft of my source code using Hivecode. I received a notification and all information was provided there.

0
source

its simple, you just need to filter the input to save your script from SQL injection, if you want to create this functionality on one page, then you should use propper conditions to check incoming messages,

php FILTER_SANITIZE_(check string,password,number,or other things) very convenient this way

-1
source

Source: https://habr.com/ru/post/1413573/

More articles:


All Articles