Hi !
Im a completely PHP newbie, so please spare me :)
Is there any way to figure out from which page a script was called ?
I want that the PHP script check it and will be executed only if the request
came from my domain (so nobody could execute it by typing its name in the
browser or something
YOu can check the HTTP_REFERRER... but really though, that's no security.
Anyone can use Curl to simulate a request that looks like it comes from your
domain.
All security measures needs to happen on the server, not from what the users
web browser gives you.
Josh.
On March 19, 2003 05:13
2 matches
Mail list logo