login security, database

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
nessalc
Forum Newbie
Posts: 1
Joined: Mon Nov 13, 2006 8:55 pm
Location: Wichita, KS
Contact:

login security, database

Post by nessalc »

I'm developing a web content management system (yes, another one). I need comments on my project. I'd like to make something that is as portable as possible between databases, and as secure as reasonably possible without SSL.

I would also like to protect testfile.txt in the "private" directory from direct or deep linking somehow, permitting only those with a specified "user role" to download files. How would I do this? An .htaccess file didn't work, at least, not as I intended it to.

Thanks in advance!
Post Reply