a security issue, feedbacks welcome

Discussion in 'ASP .Net' started by Jeff, Oct 30, 2006.

  1. Jeff

    Jeff Guest

    Hey

    asp.net 2.0

    I'm creating a web site where users must login to access to secured part of
    the site. When Logged in, the user can view a list of all the registered
    users... each person's name on this list is their login name... I assume
    this is bad, because then all the others can see what login name another
    user is using...

    When clicking on a user in this list, a page opens viewing this persons
    public profile. When the user clicks on the user in the list I add this
    user's UserName as a parameter to the URL... -> Default.aspx?user=noob... I
    guess this is bad, but I'm not sure my workarround is any better: replace
    username with the users Id in aspnet_Users table..... I could use POST, but
    I've read POST is slow

    What is your thoughts about this?

    Jeff
     
    Jeff, Oct 30, 2006
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Andrew Clancy
    Replies:
    0
    Views:
    3,312
    Andrew Clancy
    Jul 18, 2003
  2. Grahammer
    Replies:
    0
    Views:
    570
    Grahammer
    Nov 8, 2003
  3. Brian van den Broek

    mailing list welcome welcome msg in wiki suggestion

    Brian van den Broek, Dec 12, 2004, in forum: Python
    Replies:
    0
    Views:
    732
    Brian van den Broek
    Dec 12, 2004
  4. Website Feedbacks

    , May 11, 2007, in forum: HTML
    Replies:
    0
    Views:
    327
  5. Moses
    Replies:
    0
    Views:
    157
    Moses
    Feb 24, 2007
Loading...

Share This Page