Skip to content

shortland/Hybrid-Cookie-Login

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits

HybridAuth

HybridAuth

 
 

README.md

README.md

 
 

cookieLogin.pl

cookieLogin.pl

 
 

forum.sql

forum.sql

 
 

login.pl

login.pl

 
 

register.pl

register.pl

 
 

Repository files navigation

Hybrid Cookie Login

A simple, safe, barebones Perl CGI login script

Perl Modules:

# for CGI capability of Perl
use CGI;
# for setting cookies in browser
use CGI::Cookie;
# for giving browser/client messages
use JSON;
# for connecting to mysql database
use DBI;
# for creating browser cookies
use String::Random;
# for the custom modules in directory "HybridAuth"
use Exporter qw(import);
use File::Basename qw(dirname);
use Cwd qw(abs_path);
use lib;
# for sql config file (".config.yaml")
use YAML::XS qw(LoadFile);
# for password hashing
use Crypt::PBKDF2;

Issues:

- Brute force is nearly impossible; but still possible as any system is vulnerable to bruteforce. This login system DOES NOT include a CAPTCHA system. (planned)

Planned:

- Add captcha for registering and for logging in after (X) failed login attempts. - Temporarily block IP (for X minutes) if (X) failed cookie attempts are made with different cookie values. - (won't block if user is repeatedly failing to login with same cookie).

About

Web Cookie Login

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages