Results 1 to 10 of 10
  1. #1

    * How to track multi-login ?


    I wonder what is the best solution to recognize multi account login in real time. In case when few (at least two) users login to same account, how to track this kind of cheat, what is the best solution ?


  2. #2
    Join Date
    Nov 2004
    This is not a cheat, it depends on your application and the business logic and that would determine if that should be authorized or not.

    If you are tracking session state in the DB, a scan of active sessions should be enough. Other solutions may apply, such as keeping a cache of current sessions in a key-value storage system.

  3. #3
    Join Date
    Sep 2013
    On Earth
    Its not cheat. All depending on your application, you can restrict them to 1 active login.
    Use DB for sessions and when user login from new location end his old sessions.

    Or track multi sessions through DB
    Looking around for some time
    PM me for Website Design and Web Development Work.

  4. #4
    You will definitely track active login via sessions.. To identify the new login you should match the Browser UA and IP..
    If IP Address is changed, regenerate sessions at that point.

    You just have to mix up things and see what best suits your site model.

  5. #5
    You can use database to keep active session as well as use IP to distinguish sessions

  6. #6
    Join Date
    May 2013
    Dubai, UAE
    Store a unique session ID in your session and store the active session ID in the database. If someone new logs in, the session ID in the database changes and the old person's session automatically dies.

  7. #7
    Try track IP address, cookies and block tor server.
    Actual tor servers www|dot|dan|dot|me|dot|uk/tornodes

  8. #8
    You could set a field in the database to a specific value whenever a user logs in and reset the field value once logs out.

    The field status should automatically be reset after a given time, in case the user just shuts down the browser and doesn't log out.
    Web Hosting by Brontobytes

  9. #9
    Join Date
    Sep 2013
    Yes, you can use set a value for different login user record in database to track them according to their respective data in database.

  10. #10
    Join Date
    Nov 2010
    There are many ways to implement your desired functionality. The best approach is to create a new table that will handle user sessions. When the new user tries to log in, the system check for any active session. If it exists, you either destroy and create a new one, or show the user an error message ("You are already logged in").

    But there are also other approaches to this issue. It depends on the system you are working on.
    Dot.AL - .AL Domain Name Registration
    .AL - Register your .AL Domains at. Get a Premium Domain NOW.
    Shard Hosting - cPanel - Backup - 24/7 Monitoring Over 200 Ready Scripts
    Awesome Promotions for you, check our announcements page.

Similar Threads

  1. SSH login attack, how to track?
    By tommy916 in forum Hosting Security and Technology
    Replies: 9
    Last Post: 09-02-2005, 11:57 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts