tags:

views:

68

answers:

1
Q: 

Uniquely identify a user session on Linux/Windows

Hi,

We do have a client software which communicates to a server. On every start of the client the user has to put in username/password. Now it would be nice if the user did login once (assuming he is still in the same operating system session) subsequent logins wouldn't require a password. (Sidenote: the security requirements aren't really high, so this would be okay). Is there some unique id which the client can extract from the system that ids the session? If yes the server could save the session id and if it is the same we wouldn't need to ask for a password.

Thanks in advance.

P.S.: Keberos is an overkill in that case…

A: 

Isn't this why god invented Cookies?

Christian W  2010-08-27 07:24:44
i think the question is not about webserver/browser, but custom made software
knittl  2010-08-27 07:27:24
right I could use some kind of cookie, but then the question would be where to place it so noone else can access it (In theory the users homedir should be only readable by him, but well…).
Florian Apolloner  2010-08-27 07:33:38
@Florian: note that the "unique id which the client can extract from the system" would be even more public. If one user can, probably all users can. At least for your cookiefile you can set the permissions to 700, which will overrule any read access to the users' homedir.
MSalters  2010-08-27 08:35:16
@MSalters: not necessarily, if the system does provide this id it could guard it against others as well. But yeah, I guess I'll go with the cookiefile.
Florian Apolloner  2010-08-27 09:32:33

related questions

grep a file, but show several surrounding lines?
VMWare Server Under Linux Secondary NIC connection
Should I move from C++ to Python? ... Or another language?
Globus Toolkit virtual machine
How to avoid redefining VERSION, PACKAGE, etc.
How do I setup Public-Key Authentication?
showing a message box from a bash script in linux
Best Linux Distro for Computer Repair
Mapping my custom keys in Debian
Any IcedTea war stories?
How do you find the age of a long-running Linux process?
Personal Linux web server
Programmatically talking to a Serial Port in OS X or Linux
what's in your .bashrc ?
Linux - files and scripts that execute on boot
Text Editor For Linux (Besides Vi)?
Lightweight IDE for Linux
Shell scripting input redirection oddities
XML Editing/Viewing Software
What should a longtime Windows user know when starting to use Linux?
Gtk SSH client for Linux?
Getting root permissions on a file inside of vi?
Is it possible to drag windows between workspaces when using Compiz?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?