469,289 Members | 2,188 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,289 developers. It's quick & easy.

Auto login URL with Perl

We have the Intranet web site which requires users to login to access. We also have the URL with password protection that will be placed under Intranet but I donít want users to login again to that URL.

So, I like that URL embedded with login name and password so that users can automatically login. For example, http://www.mydomain.com/test.pl?username&password? .

How can I do that?
Jun 30 '08 #1
4 7520
numberwhun
3,503 Expert Mod 2GB
I don't know about others, but to me, that doesn't sound like a good idea to do. That would open you up to a form of brute force attack via URL injection if you ask me.

If the user want to have his login/pwd saved, why not just let them do it via the browser, that way the security isn't in your hands for the protection of their ID.

Regards,

Jeff
Jun 30 '08 #2
Thanks for your suggestion.

On the other hand, there are many reasons that I donít like users having login to there by login name and password.

If you know how to do that auto login, kindly let me know.
Jun 30 '08 #3
numberwhun
3,503 Expert Mod 2GB
Thanks for your suggestion.

On the other hand, there are many reasons that I donít like users having login to there by login name and password.

If you know how to do that auto login, kindly let me know.
You say its an intranet site for the company you are working at. The first question that comes to mind is, do you have access to change the sites code? I would guess that that is the only way that you are going to get the site to support login as you have described. (via the login/password URL options that is).

If you had access, then it is (possibly) a matter of using Perl to parse the options out of the URL and doing the authentication. You also haven't mentioned how they are authenticating the users so I cannot say if its a possibility.

Regards,

Jeff
Jun 30 '08 #4
I like to explain about that in details.

Recently I installed Awstats web statistics software (it is in perl) for our company and it is done.

I like to place the URL for web stats in our intranet web site which is protected by login name and password and I don't like users to login again to URL for web stats.

Our intranet web site is CMS (using MS .Net Framework) and if necessary, I can ask the company which design the CMS.

For web stats software which is in perl, I have the control over the code. But, I don't have skill in perl language and am only IT person in my company.

In fact, I can protect the "cgi-bin" directory that "awstats.pl" exists by Windows File System permission so that there will be login when users browse the URL for web stats. Because of URL for web stats will be placed under intranet, I like users to access it without another login.

I also asked help from company which design the CMS, finally, they conclude that the current security module for intranet can not protect perl and said that we have to use perl to do so.

Thanks.
Jul 2 '08 #5

Post your reply

Sign in to post your reply or Sign up for a free account.

Similar topics

5 posts views Thread by Navillus | last post: by
reply views Thread by thecoolone | last post: by
3 posts views Thread by focussys | last post: by
reply views Thread by sandy | last post: by
reply views Thread by zhoujie | last post: by
reply views Thread by suresh191 | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.