[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

security??

Posted on 1998-03-19
6
Medium Priority
?
189 Views
Last Modified: 2013-12-25
I am building an intranet site that requires a userID and password for the users to get past the first page. At the moment the passwords are passed from a form as part of the URL. The trouble with this method is that the url gets cached in the temporary internet files directory on the client, so anybody can go up to someone elses pc and retrieve their id and password from the cache. Is there a way to turn off the cacheing on the clients machine, or a better (more secure) way to send passwords?? (the server is NT 4.0 running IIS3.0, the clients are w3.1,w95 and nt)
tia.
0
Comment
Question by:acsmith
  • 2
  • 2
  • 2
6 Comments
 
LVL 3

Expert Comment

by:slok
ID: 1858038
Under IE3 and Netscape you can set the caching to 0

For IE3, Options->Advance->Settings
For Netscape4, Preference->Advance->Cache

Set them to 0.
0
 
LVL 1

Author Comment

by:acsmith
ID: 1858039
Yeah, but I need to turn the caching off on the clients machine from the server (or find another way of sending passwords). I won't be able to get physically near the clients machines to set their browsers up for them.
0
 
LVL 3

Expert Comment

by:slok
ID: 1858040
how about using an applet to get the passowrd.
That way, the entry won't be cached.

If you accept this, I will submit this as answer.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 3

Accepted Solution

by:
bigelos earned 200 total points
ID: 1858041
To turn the caching off in all browsers, you just set the expiration date.  Here's how:

To help the browser to decide how long a cached copy of your pages should be used before retrieving a newer copy, you could use the following HTML tags:

    <META HTTP-EQUIV="Expires" CONTENT="Tue, 01 Jan 1980 1:00:00 GMT">

Above META tag should be placed in between your <HEAD> and </HEAD> tags. Also note that the date specified should be a date in the past so that the browser will immediately discard the cached copy or not cache at all.
0
 
LVL 3

Expert Comment

by:bigelos
ID: 1858042
slok,

Win3.1 won't do Java applets....
0
 
LVL 1

Author Comment

by:acsmith
ID: 1858043
cheers bigelos,
works a treat.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article was originally published on Monitis Blog, you can check it here . Today it’s fairly well known that high-performing websites and applications bring in more visitors, higher SEO, and ultimately more sales. By the same token, downtime…
Without even knowing it, most of us are using web applications on a daily basis.  In fact, Gmail and Yahoo email, Twitter, Facebook, and eBay are used by most of us daily—and they are web applications. We generally confuse these web applications to…
This tutorial will teach you the core code needed to finalize the addition of a watermark to your image. The viewer will use a small PHP class to learn and create a watermark.
The viewer will get a basic understanding of what section 508 compliance can entail, learn about skip navigation links, alt text, transcripts, and font size controls.
Suggested Courses
Course of the Month18 days, 1 hour left to enroll

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question