?
Solved

security??

Posted on 1998-03-19
6
Medium Priority
?
186 Views
Last Modified: 2013-12-25
I am building an intranet site that requires a userID and password for the users to get past the first page. At the moment the passwords are passed from a form as part of the URL. The trouble with this method is that the url gets cached in the temporary internet files directory on the client, so anybody can go up to someone elses pc and retrieve their id and password from the cache. Is there a way to turn off the cacheing on the clients machine, or a better (more secure) way to send passwords?? (the server is NT 4.0 running IIS3.0, the clients are w3.1,w95 and nt)
tia.
0
Comment
Question by:acsmith
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
6 Comments
 
LVL 3

Expert Comment

by:slok
ID: 1858038
Under IE3 and Netscape you can set the caching to 0

For IE3, Options->Advance->Settings
For Netscape4, Preference->Advance->Cache

Set them to 0.
0
 
LVL 1

Author Comment

by:acsmith
ID: 1858039
Yeah, but I need to turn the caching off on the clients machine from the server (or find another way of sending passwords). I won't be able to get physically near the clients machines to set their browsers up for them.
0
 
LVL 3

Expert Comment

by:slok
ID: 1858040
how about using an applet to get the passowrd.
That way, the entry won't be cached.

If you accept this, I will submit this as answer.
0
How To Install Bash on Windows 10

Windows’ budding partnership with Canonical has certainly led to some great improvements. One of them being the ability to use Bash on your Windows machine without third party applications! This might be one of the greatest things a cloud engineer in a Windows environment can do!

 
LVL 3

Accepted Solution

by:
bigelos earned 200 total points
ID: 1858041
To turn the caching off in all browsers, you just set the expiration date.  Here's how:

To help the browser to decide how long a cached copy of your pages should be used before retrieving a newer copy, you could use the following HTML tags:

    <META HTTP-EQUIV="Expires" CONTENT="Tue, 01 Jan 1980 1:00:00 GMT">

Above META tag should be placed in between your <HEAD> and </HEAD> tags. Also note that the date specified should be a date in the past so that the browser will immediately discard the cached copy or not cache at all.
0
 
LVL 3

Expert Comment

by:bigelos
ID: 1858042
slok,

Win3.1 won't do Java applets....
0
 
LVL 1

Author Comment

by:acsmith
ID: 1858043
cheers bigelos,
works a treat.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There’s a good reason for why it’s called a homepage – it closely resembles that of a physical house and the only real difference is that it’s online. Your website’s homepage is where people come to visit you. It’s the family room of your website wh…
CTAs encourage people to do something specific to show interest in your company, product or service. Keep reading to learn why CTAs should always be thought of as extremely important, albeit small, sections of websites.
This tutorial demonstrates how to identify and create boundary or building outlines in Google Maps. In this example, I outline the boundaries of an enclosed skatepark within a community park.  Login to your Google Account, then  Google for "Google M…
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question