Page 1 of 1

login security, database

Posted: Mon Nov 13, 2006 9:19 pm
by nessalc
I'm developing a web content management system (yes, another one). I need comments on my project. I'd like to make something that is as portable as possible between databases, and as secure as reasonably possible without SSL.

I would also like to protect testfile.txt in the "private" directory from direct or deep linking somehow, permitting only those with a specified "user role" to download files. How would I do this? An .htaccess file didn't work, at least, not as I intended it to.

Thanks in advance!