Solved

security??

Posted on 1998-03-19
6
184 Views
Last Modified: 2013-12-25
I am building an intranet site that requires a userID and password for the users to get past the first page. At the moment the passwords are passed from a form as part of the URL. The trouble with this method is that the url gets cached in the temporary internet files directory on the client, so anybody can go up to someone elses pc and retrieve their id and password from the cache. Is there a way to turn off the cacheing on the clients machine, or a better (more secure) way to send passwords?? (the server is NT 4.0 running IIS3.0, the clients are w3.1,w95 and nt)
tia.
0
Comment
Question by:acsmith
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
6 Comments
 
LVL 3

Expert Comment

by:slok
ID: 1858038
Under IE3 and Netscape you can set the caching to 0

For IE3, Options->Advance->Settings
For Netscape4, Preference->Advance->Cache

Set them to 0.
0
 
LVL 1

Author Comment

by:acsmith
ID: 1858039
Yeah, but I need to turn the caching off on the clients machine from the server (or find another way of sending passwords). I won't be able to get physically near the clients machines to set their browsers up for them.
0
 
LVL 3

Expert Comment

by:slok
ID: 1858040
how about using an applet to get the passowrd.
That way, the entry won't be cached.

If you accept this, I will submit this as answer.
0
Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

 
LVL 3

Accepted Solution

by:
bigelos earned 50 total points
ID: 1858041
To turn the caching off in all browsers, you just set the expiration date.  Here's how:

To help the browser to decide how long a cached copy of your pages should be used before retrieving a newer copy, you could use the following HTML tags:

    <META HTTP-EQUIV="Expires" CONTENT="Tue, 01 Jan 1980 1:00:00 GMT">

Above META tag should be placed in between your <HEAD> and </HEAD> tags. Also note that the date specified should be a date in the past so that the browser will immediately discard the cached copy or not cache at all.
0
 
LVL 3

Expert Comment

by:bigelos
ID: 1858042
slok,

Win3.1 won't do Java applets....
0
 
LVL 1

Author Comment

by:acsmith
ID: 1858043
cheers bigelos,
works a treat.
0

Featured Post

Stressed Out?

Watch some penguins on the livecam!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Color can increase conversions, create feelings of warmth or even incite people to get behind a cause. If you want your website to really impact site visitors, then it is vital to consider the impact color has on them.
When the s#!t hits the fan, you don’t have time to look up who’s on call, draft emails, call collaborators, or send text messages. An instant chat window is definitely the way to go, especially one like HipChat. HipChat is a true business app. An…
Learn how to create flexible layouts using relative units in CSS.  New relative units added in CSS3 include vw(viewports width), vh(viewports height), vmin(minimum of viewports height and width), and vmax (maximum of viewports height and width).
The is a quite short video tutorial. In this video, I'm going to show you how to create self-host WordPress blog with free hosting service.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question