Login, back button and hack proof

niclarke

Hi all,

I have been developing a web site this week and no matter what I develop or where I search I also come to the same outcome!

All of my login/logout and authentication scripts seem to have their flaws.

Does any one know a foolproof approach to do this?

Mainly it is the back button refreshing the parameters and allowing a fresh login after logout (this is not a problem if the user closes the browser, but this is not always the case) + there is also the people out there that would like nothing more than to test/hack a web sites security.

I have seen this covered a lot on the net, but as yet none that I have seen it work like expected e.g. controlling access to a site and rights/permissions.

Any ideas will be much appreciated.

Thanks in advance,
Nick

niclarke

Does any have any ideas on this or could point me in the right direction?

Thanks,
Nick

batman

You need to be more specific in your detail. How exactly are you logging them in? Are you using cookies, sessions. How are you having them logoff? Just give a lil more detail. You can also try this site to view some authentication scripts: Here