cookies - Remember me login - Asp script -
hello have create "remeber me login" asp script, have read many scripts procedure , have see many people use store username , password inside cookie. in opinion not secure (safety), advice
you don't need store password. need username , if make sure encrypted ok save in cookie. important user not able tamper value , if server should detect it. sha1 hmac generation , aes encryption commonly used algorithms.
Comments
Post a Comment