It seemed to not get set when just typing in the address of the page
rendering phpinfo(), which makes sense, so I suppose you could use isset to
make sure the request had come from somewhere, and then check the
$_SERVER["HTTP_REFERER"] value to make sure it was from your site, or
wherever.
St
I know it can be faked, and while not 100% relevant, what have done in past
to sort of hide things like javascript source is also to set a $_SESSION
value in the page that then calls the javascript source inclusion using
something like:
And then in jsSource.php I would actually check the $_SE
Ok, will check out REQUEST_URI as well, but, after setting up a remote page
to then go to the local page, I figured out that this one seems to retrieve
it as well:
$_SERVER["HTTP_REFERER"]
Stay well
Jacob Kruger
Blind Biker
Skype: BlindZA
'...fate had broken his body, but not his spirit...'
-
http://us.php.net/manual/en/reserved.variables.server.php cited is a good
resource, you might have better luck with
$_SERVER['HTTP_REFERER']
You might want to first check the user agent (browser) with get_browser()
to determine if it is one of those that can spoof the answer. Bottom line
it's n
Ok, had a look at the phpinfo() output, but not sure what to look for, since
doesn't seem to reflect any form of referer info, etc., unless it's related
to one of the $_SERVER array elements/items?
Stay well
Jacob Kruger
Blind Biker
Skype: BlindZA
'...fate had broken his body, but not his spirit
