Ideas on authentication for a directory

phpdino

Hi I have been asked to setup a directory with php pages on a site but they aren't sure how they want it. I suggested cookie or IP authentication. User/password system is a little too much for what we need. Does anyone have any other suggestions?

big_nerd

Cookie and IP are way to insecure, cookies, I wont even go there and IP's can be spoofed, easily.

If you just want to have basic protection, you can use a .htaccess rule (if its linux) with one User & pass to share.

It won't be any PHP effort, and there's even htacess generator's available if you search google.

It is the most basic / easy method.

phpdino

big.nerd;10934201 wrote:
Cookie and IP are way to insecure, cookies, I wont even go there and IP's can be spoofed, easily.

If you just want to have basic protection, you can use a .htaccess rule (if its linux) with one User & pass to share.

It won't be any PHP effort, and there's even htacess generator's available if you search google.

It is the most basic / easy method.

Thanks for your response. These pages don't need to be super secure. They are really to appease certain customers that want the pages hidden from public without setting up a user/password system. If hackers want to somehow view these pages I guess its not the end of the world. In this case what would you suggest?