This is the reason why i wrote it is just some security.
On Monday 24 September 2001 16:15, Jeffrey Paul wrote:
> At 10:09 AM 9/24/2001, Andreas Gietl wrote:
> >Well. If you check the HTTP_REFERER on the target-site it would work and
> > give you at least some "security". However it is still not
At 10:09 AM 9/24/2001, Andreas Gietl wrote:
>Well. If you check the HTTP_REFERER on the target-site it would work and give
>you at least some "security". However it is still not really secure.
Wrong. Many browsers don't send the Referer: header, not to mention it's
downright trivial to spoof it
page. You still
check for the password though.
George, a php newbie
- Original Message -
From: "Andreas Gietl" <[EMAIL PROTECTED]>
To: "Jeffrey Paul" <[EMAIL PROTECTED]>; "Chris Herring"
<[EMAIL PROTECTED]>; "php list" <[EMAIL PROT
On Monday 24 September 2001 16:04, Jeffrey Paul wrote:
Well. If you check the HTTP_REFERER on the target-site it would work and give
you at least some "security". However it is still not really secure.
> At 07:08 AM 9/24/2001, Chris Herring wrote:
> >OOPS, again, elseif isn't what needs to be
At 07:08 AM 9/24/2001, Chris Herring wrote:
>OOPS, again, elseif isn't what needs to be done.
>
>Ok, here we go.
>
>if $pwd == $real_pwd {
>header ("Location: http://therealsite";);
>} else {
>header ("Location: http://badsite";);
>}
>
For the record, that won't stop someone from going to the des
OOPS, again, elseif isn't what needs to be done.
Ok, here we go.
if $pwd == $real_pwd {
header ("Location: http://therealsite";);
} else {
header ("Location: http://badsite";);
}
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional command
Oops, I looked through this too fast; I might have worked out what really
needs to be done...
if $pwd == $real_pwd {
header ("Location: http://actualdestinedsite";);
}
elsif {
header ("Location: http://evilsitethathasanerror";);
}
- Original Message -
From: "Ardani Sarjito" <[EMAIL PROTEC
7 matches
Mail list logo
