- Moderated by:
- Support
Member area security / password sharing
-
- rank:
-
Freshman
- registered:
- March 2005
- Status:
- offline
- last visit:
- 03.08.05
- Posts:
- 9
Good day!
I am running a fee based PN portal, and this is a question that has bothered me for quite some time - how do I prevent people from sharing usernames and passwords?
Technically, one could look at the login history for each player and see where they have logged in from, what time, whether there have been multiple cuncurrent logins with the same username, and what user agent people are using.
All these criteria, however, are inconsistent - IP addresses are constantly change, people are ever so often switching to Firefox and those who share passwords won't necessarily login at the same time...
I have done some research and found nothing that would integrate perfectly with PostNuke, or which would work as efficiently and effectively as biometric ID cards (i wish those never existed, though Smile.
I'm sure there are many who are facing the same problems and would like to get your opinion on this, if there are existing security modules that address this problem or other solutions that work nicely with PostNuke.
If not, I would be prepared to write a module to take care of this based on your feedback and ideas.
-
- rank:
-
Professional
- registered:
- September 2004
- Status:
- offline
- last visit:
- 10.11.08
- Posts:
- 815
Save their credit card info in their user profile - uneditable by them
Then say that if you share, others will have access to your info.
LOL....not really.
You could write some code that requires an email to be sent everytime they login - an access code. They visit the site, login, get the access code sent, then click on the link in the email which sets a cookie and allows access. BUT the code is only sent to the email that originally signed up for.
So, would limit only to those able to access that email - but what if they're sharing that password and accoutn, too?
Nolan M.
UHEweb
ps And how many would keep paying if they have to do this everytime they log in?
-
- rank:
-
Helper
- registered:
- March 2004
- Status:
- offline
- last visit:
- 10.02.06
- Posts:
- 113
I've seen blocks that tell you who's logged in, Nice if the user module could do the same. That way two people couldn't use the same username/password at the same time. You could log attempts to log in when someone is already logged in and warn the owner against sharing.
|
