Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

I sent emails out that contains an email registration confirmation link: http://

ID: 660245 • Letter: I

Question

I sent emails out that contains an email registration confirmation link:

http://example.com?create=email%3Djay%40gmail.com%26confirm_key%3D53e321f97c145

I do not hash the link above. Before I sent an email containing this link, the user registered as a new member. Email address is inserted as a new record in the database together with a confirm_key.

So in my database there are two fields that are first filled up email and confirm_key. The confirm_key is generated by the PHP function uniqid().

My question is, what are the security risk in using this method, if any?

Explanation / Answer

uniqid() does not create a cryptographically secure hash, and sending sensitive data over plaintext channels such as email or http means that anyone in between can read them.

Is this a problem? No, not really (with the exception stated in the last paragraph).

The information you send out consists of the user's email address and a confirmation key. This is also what's stored in the database. There is no way of sending an email without revealing the recipient's email address, so transmitting that address in plaintext as part of an URL is no problem either. If some Great Evil is going to happen, then it has already happened.

Now what about the confirmation key?

You could be giving out consecutive integers as confirmation keys (actually uniqid() is not very far from that!), and it would not matter. A malicious person could intercept someone else's key or they could trivially generate their own, but neither is going to allow them to register a fake account, since your database query looks for the pair <username, confirm_key>. A stolen or random/fake/calculated confirmation key thus does not work for another (random) username, it is worthless for an attacker.

The only attack that is reasonably plausible is that someone could intercept your email and confirm your legitimate account with the correct email address and confirmation key before you are able to do so.
This is indeed a problem if your system is designed so that confirming a user account automatically logs you into your first session, too (some sites do just that!).

Related Questions

I see that some of the code was not copied correctly into my original post. Here
Question #3634260
I see that this question was answered in C# but I need it in C++. Is it much dif
Question #3639803
I see the answers from the examples but I can\'t get my calculator to match the
Question #2821130
I see the answers provided here, but how is it done? I\'m desperateto know how i
Question #1680084
I see the following code pattern all over the place in my company\'s codebase (.
Question #642721
I see the problem here which is the well know partition problem but with constra
Question #650117
I see this question answered, but not easy to interpreter. Can someone redo this
Question #3743668
I seek a basic-features document management system. This DMS is to be used in a
Question #661451

Navigate

Previous
I sent a request for help with this assignment with a graphical image a little w
Next
I sent this before but the person gave wrong answers A______provision allows the