Index
A
account hijacking
assigning temporary passwords, 36–38
avoiding easily guessed credentials, 10–12
blocking brute-force attacks, 78–86
building login forms, 55–58
changing passwords, 25–27
designing secure tokens, 113–117
empowering users, 42–45
enforcing strong passwords, 4–10
and forms authentication, 58–65
keeping tokens alive, 142–144
limiting idle accounts, 16–18
and Passport authentication, 75–78
password aging and history issues, 22–25
protecting cookies, 124–131
resetting lost or forgotten passwords, 28–42
secret questions, 38–42
sending information via e-mail, 34–36
token threats, 111
ways to store passwords, 19–22
and Windows authentication, ...
Get Hacking the Code now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
