We plan to create a program that sends a POST request to the server program for some processing. We would like to consider some checking to make sure that the POST request is not a random spammer trying to suppress our system or something like that. I don’t know too much about this, but I thought that the client could send a date-number and an “encrypted” date-number (not encrypted, just using some special algorithm). Then the server will encrypt date-number AND decrypt date-num encrypted by date. If the encrypted date-numbers or decrypted date-dates do not match, it is obvious that this was not a request from our client, so the server will not act on the request.
As I said, I don’t know about it. Am I doing it right? Is there a better way? If this is normal, where can I look for encryption algorithms? (Most of the algorithms that I find are designed for secure encryption and can only be decrypted on one computer. I don't care about security - I'm just looking for verification).
Thank you for your help.
PS I'm not sure if this is a duplicate, because I really did not know what to look for. I could not find any other questions about this, but that does not mean anything.
EDIT: To clarify, the server code should be like a “throw-in” whenever possible - for example. if this can be done using direct PHP or ASP.NET, and not using the server configuration, then this would be better. The same is on the client side. Keep in mind that this should not be safe, we are just trying to save spammers from posting random data a million times.
source
share