[snip] I've read (at least on 2 occasions) that one can secure their forms, to ensure that the form came from the site, and not via a script kiddie. Not the method where one puts a graphic of random text to copy to the form, but via a hidden field. It has to do with having a hidden field of data, that must match some data, when the form is posted. I've been mulling over this for some time to figure out how its possible, (as I haven't seen a live example of it). Could anyone point me to an example to how this can be done, (if its even possible)??? Thanks for your input... [/snip]
Make an MD5 hash of your form's text when you have it complete. Test for that when submitted. If it matches, it is yours. People who want to hack your form will look at the source, so they'll see any hiddens you have. But one small change and the hash will not match. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
