How to control an account can only be used on a fixed computer. now we are doing something to achieve it. an account + password can only be used on a fixed computer. This account and password cannot be used after another computer is changed. Ip address cannot be controlled, because ip addresses are mostly dynamic. What other methods can be used to implement the above functions? I have consulted! ------ Solution ------------------ this requirement is not subject to COOKIE insurance, unless you can guarantee that your users will never control the use of an account on a fixed computer.
We are now working on something to achieve. a single account and password can only be used on a fixed computer. This account and password cannot be used after another computer is changed.
Ip address cannot be controlled, because ip addresses are mostly dynamic. What other methods can be used to implement the above functions?
I have consulted!
------ Solution --------------------
This requirement depends on COOKIE, unless you can ensure that your users will never clear cookies.
To use web, you must install activeX controls on the webpage.
You can use the activeX control to obtain the MAC address of the NIC, which is the unique value in the world.
If you do not change the NIC, you can use the activeX control to obtain the MAC address of the NIC and store it in the database. The activeX control will read the MAC address every time you log on to your website and compare it with the MAC address saved in the database.
------ Solution --------------------
You must use activeX, php, and js.
------ Solution --------------------
Discussion
This requirement depends on COOKIE, unless you can ensure that your users will never clear cookies.
To use web, you must install activeX controls on the webpage.
You can use the activeX control to obtain the MAC address of the NIC, which is the unique value in the world.
If you do not change the NIC, you can use the activeX control to obtain the MAC address of the NIC and store it in the database. The activeX control will read the MAC address every time you log on to your website and compare it with the MAC address saved in the database.
------ Solution --------------------
Lz, you just think about it. it is impossible to do this only through the server. I used to think about it ..... Hahaha
Obtain what mac can do on the LAN. Mac can also be changed.
If you want to determine the only computer, you must run a local program on the host computer (activex is actually the same way to get mac. However, I have never installed active websites that do not trust the websites or small websites that are not well-known)
If you want customers to run such a local program,
You can make an algorithm of your own, for example, overlay bios information, and so on. For more information about hardware, you should be able to uniquely identify a computer (the mac address is not reliable, but it is generally relatively reliable, who has nothing to do with mac every day), and then let the program send the information to the server.
------ Solution --------------------
The MAC address can indeed be changed through the arp command, but to be honest, how many people will change their MAC address? In addition, normal users do not use arp commands, right?
However, cookies are different. many system optimization software will clear cookies for users. this option is also available in IE. Or when the recipient formats the computer COOKIE, it also disappears.
The class you are looking for to get the MAC address is to get the MAC address of the server, not the MAC address of the client. how can php obtain the MAC address of the client? This is impossible according to the TCP/IP protocol.
When the client prompts that activeX is installed, IE will prompt you. You only need to specify the requirements on the website, and the user will not be allowed to register without loading activeX. Does Microsoft update require activeX installation?
There is no absolute security. we just try to improve it as much as possible. It is reasonable to say that MAC is reliable. This is the most reliable thing to authenticate the client. Some people say that they should make an encrypted string based on the CPU version or the like. In fact, the more things involved, the worse the problem. if the user changes the part of the PC, your encrypted string will become invalid.
Do most people rarely change NICs? I have seen this kind of system by recognizing MAC.
------ Solution --------------------
Can you consider it from another angle?
Only one person can log in at the same time. that is to say, the user can be kicked out as soon as he logs in to another computer!
------ Solution --------------------
Discussion
Obtain the cpu or hard disk serial number,
The mac address is easy to change and unreliable.
------ Solution --------------------
Obtain the mac address. I have implemented the mac address method in space.
