Re: [Phortify-devel] Is it alive??

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hey Philipp et al-

I agree that phortify could be very useful for everyone and to do so
requires some important features with one, as you say, being "multiple
auth levels" We all need to sit down and really think about the best way
to do this and to not set limitations.  Like, I want 30 levels for a
project, 2 levels for another.  

Regarding time-out function, what do you mean?

No really useful version exists outside of tims code.  Long ago I took
the code and made it more generic but nothing special, I've "grown up"
since then and realize I hadn't done any real coding :-)

Regarding sessions, one idea is to include a version of Jeremy's
gpl session code into phortify :

   http://www.nirvani.net/software/j-sessions-1.0.0-pre1/

Jeremy has expressed interest in doing this and once we, the phortify
crew,  get our arses going j-sessions will grow right along.  Including
sessions is obviously a good thing. We could use php4 native session
support too but I think j-sessions is php3 friendly, is that important
these days?  Also, php4 session support has had some issues in the past, i
think all are ironed out now though.  Discuss.

Other potential features exist, we need a few people to actively work on
Phortify and I personally don't have the motivation or experience to do it
alone as this is such an important and critical part of a website and must
be very secure and optimized, no bullshit.

So, that's that.  It's very suprising to me that nobody has really
stepped up and created a trully useful generic auth system ... SO, let's
do it.  The dream of Phortify is to be just that.  The demand is there.

Philipp, where do you see your role in such a venture?  Background and
expertise are in what?  Reply on or off the list.  I'll send an email to
all developers "on staff" and trim down to those interested in
contributing.  That will be done right now.

TTYL,

Philip

 On Thu, 21 Dec 2000, Philipp Wanning wrote:

> Hi,
> 
> i have found your project at phpbuilder.com. And i have read philips mail
> "Phortify has been awakened!".
> It seems that this is the project everyone, who dont want to use phplib, is
> looking for.
> My questions:
> 1. Does a new version different to Tims exist?
> 2. Can i contribute?
> 
> Features i would love:
> - different levels/groups
> - time-out function
> 
> The problem with the "plain text - way of login" should not have main focus.
> you can use something like phplibs solution or even better use SSL.
> 
> Philipp Wanning
> 
> 
> 
> _______________________________________________
> Phortify-devel mailing list
> Pho...@li...
> http://lists.sourceforge.net/mailman/listinfo/phortify-devel
> 