[nycphp-talk] How do you secure a confidential URL w/query sent via email?
Cliff Hirsch
cliff at pinestream.com
Fri Jul 22 11:03:40 EDT 2005
I just received an email from evite with a link that looked something
like this:
<http://www.evite.com/pages/invite/viewInvite.jsp?inviteId= very long
string &li=iq&src=email
This is a common approach for user login validation, etc. It doesn't
require a login. It doesn't check to see if it came from the email
address that it was sent to.
What prevents a hacker from randomly entering a "very long string" to
gain access to confidential information? It seems to me that the usual
approach is to just go with the very low probability formula. Is this
more secure than I think? Am I missing something here? To me a more
secure approach would be to require the email, or some other tidbit sent
in the email, to be entered. That would correlate the "very long string"
with the email that it was sent to, which a hacker would not know.
Cliff Hirsch
More information about the talk
mailing list