By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
437,949 Members | 1,824 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 437,949 IT Pros & Developers. It's quick & easy.

authentication script

P: n/a
I'm looking for a decent free/open source php authentication script
that would allow users to log in/out of a secure area of a web site.
Ideally should have email confirmation and password reminder and work
with mysql.

Any suggestions?

May 4 '07 #1
Share this Question
Share on Google+
3 Replies


P: n/a
On May 4, 6:29 pm, abracad_1...@yahoo.com wrote:
I'm looking for a decent free/open source php authentication script
that would allow users to log in/out of a secure area of a web site.
Ideally should have email confirmation and password reminder and work
with mysql.

Any suggestions?
Nice CMSs have authentication stuff, you may just be looking for a
CMS. Try Drupal or Joomla or something and see how you like it. Secure
authentication is built into Apache (with usernames and passwords and
all of that), and you can password protect directories or files, but
that's harder to automate and integrate.

-Mike PII

May 4 '07 #2

P: n/a
On Fri, 04 May 2007 15:29:29 -0700, abracad_1999 wrote:
I'm looking for a decent free/open source php authentication script
that would allow users to log in/out of a secure area of a web site.
Ideally should have email confirmation and password reminder and work
with mysql.

Any suggestions?
You may like what you see at:
http://www.evolt.org/PHP-Login-Syste...Admin-Features

It is conceptually well thought through, nicely documented, and prety
decent code practice.

HTH
Sh.
May 5 '07 #3

P: n/a
Schraalhans Keukenmeester schreef:
On Fri, 04 May 2007 15:29:29 -0700, abracad_1999 wrote:
>I'm looking for a decent free/open source php authentication script
that would allow users to log in/out of a secure area of a web site.
Ideally should have email confirmation and password reminder and work
with mysql.

Any suggestions?

You may like what you see at:
http://www.evolt.org/PHP-Login-Syste...Admin-Features

It is conceptually well thought through
Dag Schraalhans,

I don't know. If security is important i suggest to check:

- Does it leave possible hackers in the dark if only the username is
correct, or does it tell them so that they know they have found a
correct user name and from that point they only need to guess the password?

- Does it contain a defense against brute force and dictionary attacks?
Or would the server validate as many passwords as are submitted as fast
as it can, even if they are all submitted by the same client/ip adress?
(This could especially be vurnerable if users can choose their own
password.)

Greetings,

Henk Verhoeven,
www.phpPeanuts.org.
May 5 '07 #4

This discussion thread is closed

Replies have been disabled for this discussion.