EasyTech
11-12-2009, 07:01 PM
I'm curious how sites like the NYTimes stores information about me long term. If I don't visit their site for six months, they know who I am. I would like to copy this functionality for a site I am creating.
I noticed that my IP address was stored in the cookie file, but everything else was gibberish. What I plan on doing is storing a user's IP address, and a hash of email, pass, and salt in a cookie. Just those two. When a user connects after 6 months, I will match these up with information stored in an SQL user database.
I will most likely not have SSL. Are there any other design flaws I am overlooking?
There won't be too much secure information here, so ease of use is top priority.
--Dave
I noticed that my IP address was stored in the cookie file, but everything else was gibberish. What I plan on doing is storing a user's IP address, and a hash of email, pass, and salt in a cookie. Just those two. When a user connects after 6 months, I will match these up with information stored in an SQL user database.
I will most likely not have SSL. Are there any other design flaws I am overlooking?
There won't be too much secure information here, so ease of use is top priority.
--Dave