Results 1 to 3 of 3
  1. #1
    Join Date
    Feb 2007
    Posts
    34

    Unanswered: encryption question

    hi

    i've got a database that uses the URL to pass a parameter, the record ID. This seems susceptible to hacking and I'd like to encrypt that parameter so that its not usefully displayed.

    starting URL: www.abc.com/results_details.php?video_ID=2

    desired URL: http://www.abc.com/results_details.p...48r9wreofasohf

    or something like it, however its saved encrypted.

    would one way to do this would be to take the current ID and encrypt it and store it in a new field? then i'd rewrite the results page to pass the new encrypted ID as the parameter, which would be of little value to a hacker. redoing the results page is no problem.

    but since each starting ID will be different, it seems a difficult task to write mysql script to update each record with a record-specific encoded ID.

    any suggestions would be greatly appreciated. thanks.

    mike

  2. #2
    Join Date
    Mar 2004
    Posts
    480
    what you do is don't bother encrypting at all. you put a password system into place and unless the user is logged in they can't see any of the video pages.

  3. #3
    Join Date
    Feb 2007
    Posts
    34
    thanks for the reply.

    but i want to keep the website 'open' so that it get maximal use.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •