I assume the md5 function is just an encryption technique? I know another option is to use the sha1() encryption that seems to do a good job. Not sure if either has a vast benefit over the other or not but figured it was worth mentioning lol

http://php.net/require
http://php.net/include

the biggest difference between require() and include() is that require() will throw a fatal error and stop the script if there is an error with the file or the path to the file. it is used when the "required" file is critical to the script functioning, like the DB connection script. If the connection script is not available, stopping the process is a good idea.

This is a very nice tutorial for a login script. I haven't read through it thoroughly but I have skimmed through various sections and it looks a bit more secure than the one that I use currently.

One thing though, what's the difference between require() and require_once()? It seems that both are putting the file in once, so why use require_once()?

You assume right, although I'm not aware of the benefits of one over another either. Personally I use md5(), simply because it was the one I saw first, I guess. If one was substantially better than the other I'd imagine that there'd be more awareness on the subject.


require() will get the required file each and every time. require_once() will only ever get the required file once in a page, so if it's been required before it won't be done so again. Personally I find this useful for things like database connection includes, as although you may have various different spots where you want to connect to a database in your script, there's no need to connect more than once. The first time the file is required, the database would be connected to. All times after that nothing would happen, and assuming you haven't closed the previous connection for whatever reason then all other database queries will run off of the first one.

In my opinion, if possible you should use require_once() in preference to require(), even if you only use the require once on the page. It just seems like neater code to me, but that's just the way I am.

Overall, not a bad little login script. I had great fun writing my own one a little while back, and once you've cracked your first one the rest do tend to fall in to place a lot quicker. It made for a great opportunity to practice using mysql functions and whatnot as well, and isn't too difficult technically, so I reckon it's not a bad little thing for PHP programmers who've got their heads around the very basics to have a crack at.

It was a really long time ago I created a php-script So I have forgotten most of the codes I really have to make a comeback but I am starting to find it kinda boring

Thanks for the comments and tips

//Feelay

Very nice tutorial. Easy to understand and written for the beginner (like me ). I'll try this out sometime, I've always wanted to have a go at a login system. Simple but effective

Nice, really like it

Hi =]

nice tutorial - its so useful having so many notes too.

any idea why im getting this error:

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in login2.php on line 18

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in login2.php on line 25
Wrong Username or Password

?

Thanks
Max

Nice toutorial, this is verry usefull script and lot of new things to learn. But it will be more usefull if any one explains the script in more details and with some more comments for the script.