As I discovered, using http_referer is a bad idea, as many things stop it from being sent. Firewalls, anti-virus, browser plugins, all kinds of things.
Russ -----Original Message----- From: Ali Awan [mailto:[EMAIL PROTECTED] Sent: 31 October 2005 23:27 To: CF-Talk Subject: Re: Problems with sessions in CF 5 Sorry for the double-post. However, there is something even more strange. I'm checking for the http_referer before I set session variables. Now in this rare instance, the http_referer does not exist. Does anybody know how this could happen? The user gets to the page from a form submit, and on my development box in all tests that I run, the http_referer always exists. There's no way a user can navigate to that page without a submit, I already block users from navigating to it directly. Another curious thing is that there are a couple of cgi variables on the page when it errors out which are: http_~~~~~~~ and the value of that is a huge string of tildes like so: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Again if anyone has any insight on such an issue I would be extremely grateful. Thanks, Ali ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Discover CFTicket - The leading ColdFusion Help Desk and Trouble Ticket application http://www.houseoffusion.com/banners/view.cfm?bannerid=48 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:222877 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
