Login security
GCC
gccconsulting at comcast.net
Tue Jul 5 14:00:05 PDT 2005
> -----Original Message-----
> From: filepro-list-bounces at lists.celestial.com
> [mailto:filepro-list-bounces at lists.celestial.com] On Behalf
> Of Robert Haussmann
> Sent: Tuesday, July 05, 2005 3:48 PM
> To: 'Kenneth Brody'
> Cc: 'Filepro List'
> Subject: RE: Login security
>
> > Quoting Robert Haussmann (Tue, 5 Jul 2005 15:27:38 -0400):
> > [...]
> > > 1) use GETENV to get the system variable USERNAME (contains the
> > > username of the logged in user for Windows NT/2000/XP; not sure
> > > about XP). This eliminates the user needed to retype the
> username,
> > > but you'll have to verify the password each time.
> > [...]
> >
> > Or use @ID, which has been available on Windows for two years.
> >
>
> Excellent point (although I believe this truncates usernames at
> 8 characters IIRC--at least that why we went to storing
> usernames/pw's in our own environmental variables).
>
> Bob
>
Using @id assumes that the person starting the filePro app is the person who
signed onto the computer. This can be a very dangerous assumption if file
access is being controlled. I would love to be able to use putenv pfname,l_name
when the person signs into my app. However, it won't stick unless I run
everything from my starting program from menus, screens and chaining to the
processing table I need to use.
Now there must be an easier way.
Richard Kreiss
GCC Consulting
More information about the Filepro-list
mailing list