FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » Imported messages » comp.lang.php » Iterative interfacing between client and server
Show: Today's Messages :: Polls :: Message Navigator
Return to the default flat view Create a new topic Submit Reply
Re: Iterative interfacing between client and server [message #169876 is a reply to message #169875] Wed, 29 September 2010 04:41 Go to previous messageGo to previous message
Denis McMahon is currently offline  Denis McMahon
Messages: 634
Registered: September 2010
Karma:
Senior Member
On 29/09/10 04:16, Graham Hobbs wrote:

> Student Number
> First Name
> Surname
> Faculty
> Major
>
> So ..
> 1. The user enters Student Number, clicks Submit
> Server uses Student Number to access an sql table
> Server sends page with first name, surname, faculty, major populated
> goto 1.
>
> Is this a practical web application?

Can I (or anyone else) enter random student numbers and use this to
obtain information about random students?

Is there a data security implication, or even a student personal safety
implication, if anyone viewing the website can obtain data about
students simply by stumbling across the right "identifier"?

I'd suggest:

1. Student logs in with student number and a password
2. Student sees only their own data

Rgds

Denis McMahon
[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: instructor solution manual for Electrical Machines, Drives and Power Systems (6th Ed., Theodore Wildi)
Next Topic: Array count for each value in turn syntax?
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Thu Nov 28 14:08:40 GMT 2024

Total time taken to generate the page: 0.04209 seconds