Comments on: Safer web forms with security tokens http://elbertf.com/2009/11/safer-web-forms-with-security-tokens/ Insights and Updates from a Tech Geek Sat, 24 Jul 2010 04:15:41 +0000 hourly 1 http://wordpress.org/?v=3.0 By: reececropley http://elbertf.com/2009/11/safer-web-forms-with-security-tokens/comment-page-1/#comment-72 reececropley Tue, 16 Mar 2010 00:43:51 +0000 http://ElbertF.com/?p=367#comment-72 Cheers for this. I has set up a script where it create a random hash tag and put it into a session variable. It was all set up the same as yours but everytime I navigated to the page it would re-send the form. (I got the code from an O'Reilly book aswell). This one works all fine though.<br><br>Thanks mate. Cheers for this. I has set up a script where it create a random hash tag and put it into a session variable. It was all set up the same as yours but everytime I navigated to the page it would re-send the form. (I got the code from an O'Reilly book aswell). This one works all fine though.

Thanks mate.

]]> By: ElbertF http://elbertf.com/2009/11/safer-web-forms-with-security-tokens/comment-page-1/#comment-44 ElbertF Tue, 17 Nov 2009 01:22:06 +0000 http://ElbertF.com/?p=367#comment-44 If you're building it on phpBB something similar should already be in there, they use what they call "form tokens" and "confirm boxes" to prevent XSRF. If you're building it on phpBB something similar should already be in there, they use what they call “form tokens” and “confirm boxes” to prevent XSRF.

]]> By: ElbertF http://elbertf.com/2009/11/safer-web-forms-with-security-tokens/comment-page-1/#comment-42 ElbertF Mon, 16 Nov 2009 19:22:06 +0000 http://ElbertF.com/?p=367#comment-42 If you're building it on phpBB something similar should already be in there, they use what they call "form tokens" and "confirm boxes" to prevent XSRF. If you're building it on phpBB something similar should already be in there, they use what they call “form tokens” and “confirm boxes” to prevent XSRF.

]]> By: Ramon Fincken http://elbertf.com/2009/11/safer-web-forms-with-security-tokens/comment-page-1/#comment-41 Ramon Fincken Mon, 16 Nov 2009 11:42:43 +0000 http://ElbertF.com/?p=367#comment-41 Excellent and usefull tip, I'll adapt this one for <a href="http://www.phpbbantispam.com" rel="nofollow">http://www.phpbbantispam.com</a> ( on which I allready have a set of randomized (hidden and non hidden) fields ). Excellent and usefull tip, I'll adapt this one for http://www.phpbbantispam.com ( on which I allready have a set of randomized (hidden and non hidden) fields ).

]]> By: Ramon Fincken http://elbertf.com/2009/11/safer-web-forms-with-security-tokens/comment-page-1/#comment-40 Ramon Fincken Mon, 16 Nov 2009 11:41:11 +0000 http://ElbertF.com/?p=367#comment-40 Excellent and usefull tip, I'll adapt this one for <a href="http://www.phpbbantispam.com" rel="nofollow">http://www.phpbbantispam.com</a> ( on which I allready have a set of randomized (hidden and non hidden) fields ). Excellent and usefull tip, I'll adapt this one for http://www.phpbbantispam.com ( on which I allready have a set of randomized (hidden and non hidden) fields ).

]]>