CGI.HTTP_REFERER isn't reliable... it's far too easy to spoof requests coming from anywhere... though it may discourage them.
~Simon Simon Horwith CTO, Etrilogy Ltd. Member of Team Macromedia Macromedia Certified Instructor Certified Advanced ColdFusion MX Developer Certified Flash MX Developer CFDJList - List Administrator http://www.how2cf.com/ -----Original Message----- From: Paul Fennell [mailto:[EMAIL PROTECTED] Sent: 15 September 2003 13:47 To: [EMAIL PROTECTED] Subject: RE: [ cf-dev ] Stopping 'db scrapes' Going just on what you posted Would it be possible to do a check on CGI.HTTP_REFERER contains the current domain name ? So only pages in the site can call subpages and they cannot be called direct ? Or are they just viewing a dynamic page ? that anyone can see ? After all .. file - save as ;) -----Original Message----- From: Peter Dray [mailto:[EMAIL PROTECTED] Sent: 15 September 2003 11:58 To: [EMAIL PROTECTED] Subject: [ cf-dev ] Stopping 'db scrapes' People, One of the sites I am working on gets its data 'scraped' for use in a piece of software developed by a competitor. They use an http get or post from an end users machine so it's impossible to tell the software apart from any other user. Has anyone here any advice on what methods to use to defeat this sort of thing? Cheers Pete Dray -- ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For human help, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.516 / Virus Database: 313 - Release Date: 01/09/2003 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.516 / Virus Database: 313 - Release Date: 01/09/2003 -- ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For human help, e-mail: [EMAIL PROTECTED] -- ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For human help, e-mail: [EMAIL PROTECTED]
