Question: Suppose that John writes the following php script to access his database. He is worried that the script can be read by an adversary and

Suppose that John writes the following php script to access his database.

He is worried that the script can be read by an adversary and he wants to protect the login information. Given that this script is only accessed by an administrator, John decides to write code that places a magic value within the cookie of the administrator and then somehow use this value to hide all critical information in the above PHP script (specifically the raw value of $username and $password). Note that the magic value can be accessed from within the script in the following way: _COOKIE[mymagic] a) Write a modified PHP script that achieves Johns objective. Explain what the magic value will be. b) What is the main defect of Johns approach? c) What would be a better way to achieve Johns objective?

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Suppose that John writes the following php script to access his database. He is worried that the script can be read by an adversary and he wants to protect the login information. Given that this...

Assume that you have an algorithm that can fill 3D triangles with a constant colour. Explain what additional information and additions to the algorithm are required to Gouraud shade the triangles....

QUESTION 1 Suppose Alice wants to communicate confidentially with Bob using asymmetric cryptography. Alice should encrypt the message to Bob using which of the following keys? Bob's private key...

Database Administration CHAPTER OBJECTIVES I Understand the need for and importance of database I ttno'illI the meaning of ACID transaction administralin - Learn the tour 1992 ANSI standard isolation...

I have to create a program in C and I can't figure it out. The program has to read a source file. Please help. /******************************************************************** PROJECT: Glossary...

There are two problems due this week (each worth 35 points) as follows. Case 5-1David L. Miller: Portrait of a White-Collar Criminal (page 144). In comprehensive paragraphs, answerrequirements 1?6....

Averell Cabinetry Case Overview This case is presented as close as possible to the way you may encounter it in working life. Your role is that of a newly hired HR manager. You will learn about the...

LAW 2422 Could I get the answer for those questions? This is talking the about the LAW 2422 at RMIT LAW OF INVESTMENTS AND FINANCIAL MARKETS Tutorial Questions Tutorial 1 Revision / Introduction to...

After reading CHAPTER 2 below from Michael J. Sandel 's book " JUSTICE ", please answer the following question: QUESTION: What are the strengths of Bentham 's thinking on moral reasoning? CHAPTER 2:...

We define on N the relation by mnm divides n. Prove that is a partial order on N. Let f: XY be a function. Suppose that there are two functions g, h: YX such that for all EX, (gof)(x)=x, and for all...

Vanillin (the natural vanilla flavoring) occurs in nature as a -glycoside of glucose. Suggest a structure for this glycoside. CH,O vanillin

What are the 2 - 3 most important favorable elements ( pros ) of stocks and 2 - 3 most favorable aspects of bonds to the issuer?

Compared with half a century ago, adoption has become _ _ _ _ _ _ _ _ _ common, but it is more open and acceptabl e , so we probably discuss it _ _ _ _ _ _ _ . fill in the blanks more or much less or...

2. What do you believe is at the root of the problem?

1. How would you advise Tanya to prioritize the problems that need to be addressed?

3. Continue until everyone is satisfied that his or her own needs and interests have been stated clearly; then ask the group to generate new proposals that seek to incorporate a broader range of...