By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
437,773 Members | 1,710 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 437,773 IT Pros & Developers. It's quick & easy.

Auto login URL with Perl

P: 3
We have the Intranet web site which requires users to login to access. We also have the URL with password protection that will be placed under Intranet but I donít want users to login again to that URL.

So, I like that URL embedded with login name and password so that users can automatically login. For example, http://www.mydomain.com/test.pl?username&password? .

How can I do that?
Jun 30 '08 #1
Share this Question
Share on Google+
4 Replies


numberwhun
Expert Mod 2.5K+
P: 3,503
I don't know about others, but to me, that doesn't sound like a good idea to do. That would open you up to a form of brute force attack via URL injection if you ask me.

If the user want to have his login/pwd saved, why not just let them do it via the browser, that way the security isn't in your hands for the protection of their ID.

Regards,

Jeff
Jun 30 '08 #2

P: 3
Thanks for your suggestion.

On the other hand, there are many reasons that I donít like users having login to there by login name and password.

If you know how to do that auto login, kindly let me know.
Jun 30 '08 #3

numberwhun
Expert Mod 2.5K+
P: 3,503
Thanks for your suggestion.

On the other hand, there are many reasons that I donít like users having login to there by login name and password.

If you know how to do that auto login, kindly let me know.
You say its an intranet site for the company you are working at. The first question that comes to mind is, do you have access to change the sites code? I would guess that that is the only way that you are going to get the site to support login as you have described. (via the login/password URL options that is).

If you had access, then it is (possibly) a matter of using Perl to parse the options out of the URL and doing the authentication. You also haven't mentioned how they are authenticating the users so I cannot say if its a possibility.

Regards,

Jeff
Jun 30 '08 #4

P: 3
I like to explain about that in details.

Recently I installed Awstats web statistics software (it is in perl) for our company and it is done.

I like to place the URL for web stats in our intranet web site which is protected by login name and password and I don't like users to login again to URL for web stats.

Our intranet web site is CMS (using MS .Net Framework) and if necessary, I can ask the company which design the CMS.

For web stats software which is in perl, I have the control over the code. But, I don't have skill in perl language and am only IT person in my company.

In fact, I can protect the "cgi-bin" directory that "awstats.pl" exists by Windows File System permission so that there will be login when users browse the URL for web stats. Because of URL for web stats will be placed under intranet, I like users to access it without another login.

I also asked help from company which design the CMS, finally, they conclude that the current security module for intranet can not protect perl and said that we have to use perl to do so.

Thanks.
Jul 2 '08 #5

Post your reply

Sign in to post your reply or Sign up for a free account.