Solved

Website Login to secure confidential information

Posted on 2008-10-10
8
358 Views
Last Modified: 2013-11-19
We are in the process of setting up a website. On the website we want a secure login link, so our clients can login by screen name and password to access their information.

Each client will need to login with a unique screen name and password, giving them the ability to see the status of their accounts, (i.e. database or spreadsheet of pertinent information, along with ability to upload and download confidential documents, and communicate by posting messages). Due to the type of private information it will need to be encrypted and secured in a way that complies with current information security laws

I was in the process of setting up a website on GoDaddys WebSiteTonight, but it looks like we wont have the ability to set it up the way we need it.

I am unsure as to how to set this up and where to go from here.
0
Comment
Question by:nashvilletn
  • 5
  • 2
8 Comments
 

Author Comment

by:nashvilletn
Comment Utility
Anyone have an answer???
0
 

Author Comment

by:nashvilletn
Comment Utility
Anyone have an answer???
0
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 250 total points
Comment Utility
Hi nashvilletn,

If you have access to PHP and MySQL: http://www.phpeasystep.com/workshopview.php?id=6

0
 

Author Comment

by:nashvilletn
Comment Utility
can this be done on godaddy's website tonight?
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 3

Expert Comment

by:wktang83
Comment Utility
This tutorial (http://www.phpeasystep.com/workshopview.php?id=6) DOES NOT protect you against session hijacking. Unless you're encrypting the connection using SSL, the transmission of data between the client's computer and the server can be intercepted by an attacker, and can be used to hijack the session, and therefore gaining access to the administrative system.

If you are using php, read more about preventing session hijacking here:
http://phpsec.org/projects/guide/4.html

I have written a class in php which is able to defend against session hijacking. If you're interested, post back.
0
 

Author Comment

by:nashvilletn
Comment Utility
So as long as SSL is utilized will this type of setup work? Do you know if this can be implemented in a website tonight website?
0
 
LVL 3

Assisted Solution

by:wktang83
wktang83 earned 250 total points
Comment Utility
nashvilletn:

According to this site,
https://www.godaddy.com/gdshop/hosting/hosting_build_website.asp?app_hdr=

they do give you a free SSL cert. (Only for the Premium Plan though).

If you're not on the premium plan, you can have SSL cert as an add-on for $29.99/yr.
https://www.godaddy.com/gdshop/ssl/ssl.asp

SSL certs will enable your website to have secure SSL encrypted connection.
0
 

Author Closing Comment

by:nashvilletn
Comment Utility
Thank you for your assistance.  It is greatly appreciated!!!
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

What is Node.js? Node.js is a server side scripting language much like PHP or ASP but is used to implement the complete package of HTTP webserver and application framework. The difference is that Node.js’s execution engine is asynchronous and event…
Real-time is more about the business, not the technology. In day-to-day life, to make real-time decisions like buying or investing, business needs the latest information(e.g. Gold Rate/Stock Rate). Unlike traditional days, you need not wait for a fe…
This video teaches viewers how to create their own website using cPanel and Wordpress. Tutorial walks users through how to set up their own domain name from tools like Domain Registrar, Hosting Account, and Wordpress. More specifically, the order in…
Wufoo.com provides powerful tools for surveying targeted groups, and utilizing data from completed surveys to find trends, discover areas of demand or customer expectation, and make business decisions on products or services.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now