> >[Using HTTP_REFERER for security purposes] > > > >Simple, effective, and safe. > > Simple, but unsafe. $HTTP_REFERER is not suited for security > related purposes, because > > - it's optional, you cannot rely on it's presence > - it's easy to manipulate
I thought about adding this note. It is not secure, but it adds to the security level of your scripts. Newbie script kidies don't play with HTTP_REFERER. At least you get less unsecure data... Goba
