Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

how to protect page display using cookies?

Posted on 2000-04-24
4
Medium Priority
?
221 Views
Last Modified: 2006-11-17
Hi guys,

I have a login page, responselogin page and logout page. How can I do to delete cookies from my computer so that next time user cannot go to previous page without login the id and password even he/she press the previous button in their browser. This is very important to protect the page from unaouthorize user.

TQ
0
Comment
Question by:zamirjalil
  • 2
4 Comments
 
LVL 4

Expert Comment

by:fruey
ID: 2743092
Best thing to do is to disable cookies.

In IE - Internet Options.. Security... Custom
then disable cookies that are stored on your computer, and once-per-session cookies, OR
just disable stored cookies and close your browser fully before letting anyone else use it

In Netscape - Edit... Preferences.. Advanced and disable cookies.

You can also delete cookies by clearing your cache manually. Cookies are usually easy to find in Windows Explorer in your browser cache folder, and can be deleted manually.

From a programming point of view, if you want to write a cookie just for the session, so that it isn't stored on the computer, you can do this by not setting an expiry date. That way it will only last until the end of the session. You could give your user a dialog box like "Close your browser before anyone else uses the computer" as a security tip.
0
 

Expert Comment

by:deepaktyagi
ID: 2743229
you can do one thing when you go to the next page
<a href="javascript:locations.replace(your nextpage address)"></a>

This will not allow the user to go back by using back button.
This is for netscape.
0
 

Accepted Solution

by:
deepaktyagi earned 10 total points
ID: 2743230
you can do one thing when you go to the next page
<a href="javascript:locations.replace(your nextpage address)"></a>

This will not allow the user to go back by using back button.
This is for netscape.
0
 

Expert Comment

by:avidahake
ID: 2743246
you can check from which page he is accessing login page using
'Request.ServerVariables("HTTP_REFERER")
you can check like

if Request.ServerVariables("HTTP_REFERER") = "your password page's URL" then
    allow him to proceed
else
   redirect him to password page
end if

I think this will solve your problem


Avinash.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently decide that I needed a way to make my pages scream on the net.   While searching around how I can accomplish this I stumbled across a great article that stated "minimize the server requests." I got to thinking, hey, I use more than one…
I was asked about the differences between classic ASP and ASP.NET, so let me put them down here, for reference: Let's make the introductions... Classic ASP was launched by Microsoft in 1998 and dynamically generate web pages upon user interact…
This Micro Tutorial will teach you how to add a cinematic look to any film or video out there. There are very few simple steps that you will follow to do so. This will be demonstrated using Adobe Premiere Pro CS6.
Screencast - Getting to Know the Pipeline
Suggested Courses

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question