[thelist] Security concerns on this...
Walter Torres
walter at torres.ws
Tue May 11 07:51:03 CDT 2004
What's the drawback on this block on each page?
if
(!isset($_SERVER['PHP_AUTH_USER'])||!isset($_SERVER['PHP_AUTH_PW']))
{
header('WWW-Authenticate: Basic realm="My Realm"');
header('HTTP/1.0 401 Unauthorized');
echo 'Authorization required';
header("location: err_page.php");
}
Never mind the fact it doesn't really chaeck for valid info, this is
just a crude demo.
Walter
More information about the thelist
mailing list