Solved

Security in CGI program

Posted on 2000-03-04
12
163 Views
Last Modified: 2010-04-04
I'd like use a cgi to let my user get
their private informations from web, but
after the first user login and viewing
his things, next user can use "back"
button of IE to go back and get the
private data of the first person.

How can I add protection of my web?
0
Comment
Question by:liulian
12 Comments
 
LVL 1

Expert Comment

by:fulvio_brasil
ID: 2584340
A good way is create a link in your HTML which closes the window. The user can click it after use your page.

You can use this:
<a href="" onclick="parent.close()">Exit</a>
0
 

Author Comment

by:liulian
ID: 2584520
But my program works on a touching screen. User can't close the IE!
0
 

Author Comment

by:liulian
ID: 2584547
Some web has "Logout" , if I  click on it then use the "back" button, the web site redirect to login page. How do they do like this?
0
 
LVL 17

Expert Comment

by:inthe
ID: 2585169
Hi
you should use these instead somewhere in you <head> tag ,these stop the browsers from loading pages from the cache:

<meta HTTP-EQUIV="pragma" Content="nocache">
<meta HTTP-EQUIV="cache-control" Content="no-cache">
<meta HTTP-EQUIV="expires" content="1 Jan 99">
 
 
Regards Barry
0
 

Expert Comment

by:mirghani
ID: 2590889
Listening:-)
0
 

Author Comment

by:liulian
ID: 2594126
hi inthe:
Thank you, but it doesn't work.
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 

Author Comment

by:liulian
ID: 2594128
hi inthe:
Thank you, but it doesn't work.
en...
Can you give me more comments?
0
 
LVL 17

Expert Comment

by:inthe
ID: 2594919
mmm.. i have to test that sometime i was quite sure it should work.i have definetly used it before in homepage stuff for clearing a form or something.
0
 

Author Comment

by:liulian
ID: 2598640
Hi, inthe:
Can you can me a web page in the internet has this function?
Thank you.
0
 
LVL 17

Expert Comment

by:inthe
ID: 2598826
Hi
 it dont work but i find a way that does try this:

<A HREF="javascript:location.replace('nextpage.html')">Advance</A>

The location object's replace() method overwrites the current history entry with the specified URL. It removes the current history entry before the next URL is loaded. Removing the item from the history list also prevents users from seeing the page again by clicking on the Back button later.
This technique is very useful for online games and multi-page forms, where you want prevent the user from returning to the previous page. Furthermore, the location.replace() method is supported by all browsers except Navigator 2.0x.
0
 

Author Comment

by:liulian
ID: 2599162
Ok...I'll try it later..
Thank you
0
 
LVL 17

Accepted Solution

by:
inthe earned 50 total points
ID: 2775436
this works ive tested:
<A HREF="javascript:location.replace('nextpage.html')">Advance</A>

The location object's replace() method overwrites the current history entry with the specified URL. It removes the current history entry before the next URL is loaded. Removing the item from the history list also prevents users from seeing the page again by clicking on the Back button later.
This technique is very useful for online games and multi-page forms, where you want prevent the user from returning to the previous page. Furthermore, the location.replace() method is supported by all browsers except Navigator 2.0x.

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hello everybody This Article will show you how to validate number with TEdit control, What's the TEdit control? TEdit is a standard Windows edit control on a form, it allows to user to write, read and copy/paste single line of text. Usua…
In my programming career I have only very rarely run into situations where operator overloading would be of any use in my work.  Normally those situations involved math with either overly large numbers (hundreds of thousands of digits or accuracy re…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now