[nycphp-talk] NEW PHundamentals Question - HTTP Authentication
Chris Shiflett
shiflett at php.net
Sun Oct 24 13:32:57 EDT 2004
--- Ophir Prusak <prusak at gmail.com> wrote:
> 2. HTTP Authentication is probably more secure than anything
> you'll ever write yourself.
That's a pretty strong statement, but I think I understand what you're
saying. Is your point that implementing HTTP Authentication is more secure
in terms of access control? I agree with that, since your own
implementation could have flaws in that regard.
I think saying HTTP Authentication is more secure is a bit misleading,
because many of us start assuming all sorts of things. :-)
Chris
=====
Chris Shiflett - http://shiflett.org/
PHP Security - O'Reilly HTTP Developer's Handbook - Sams
Coming December 2004 http://httphandbook.org/
More information about the talk
mailing list