I'm not trying to keep my script secure, I'm trying to get into another
script, using cURL.
I sent all of the POST fields, set my REFERER to be their referer page, even
set my AGENT to
be ie 5 on a Win2K box. Damn script is still not returning the right screen.
When I copy the HTML
code to my machine and run it locally (adjusting the FORM ACTION= to the
remote script url) it works.
I can even change the same form around and point it one of my scripts that
prints every POST var out, I
got them all. I checked for cookies - none.
I'm not doing this to do anything illegal. I'm trying to link with this
script...
http://wwwapps.ups.com/servlet/QCCServlet
to get shipping info (their XML integration is impossible with PHP - PHP
cannot do it). This makes
no sense to me, I can't think of anything I'm missing. I've gone through my
code for typos and
case sensitivities - even the order the POST vars are sent in is the same!
Aaaaaauuugggggghhhh!!!!!
-dave
""phpman"" <[EMAIL PROTECTED]> wrote in message
9ejeqp$gm7$[EMAIL PROTECTED]">news:9ejeqp$gm7$[EMAIL PROTECTED]...
> Since nobody answered my last question (or any of them for that matter).
Let
> me rephrase it a little
> different.
>
> Other then checking the referer (to make sure the posted data came from
the
> right page)
> and user agent (to see if it exists), is there any other way to secure a
> form from having other
> forms submitting to it?
>
> -dave
>
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> To contact the list administrators, e-mail: [EMAIL PROTECTED]
>
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
