This is a very important question in my opinion... and I have been scrounging the net looking for a solution I can implement.
I would certainly appreciate someone throwing a light switch so I can see the solution more clearly. As Dave clearly points out... we can NOT use the cgi.http.referrer variable. Curious, would having application.cfm check a <client.LoggedIn> or <session.LoggedIn> variable keep users with other tools like Dave suggested from being successful? till next time, Brian At 10:19 AM 1/24/02 -0800, you wrote: >Is there a way I can narrow down a hackers ability to >post a form to one of my action templates. >Http-referrer is not reliable, I know. > >JS > > >__________________________________________________ >Do You Yahoo!? >Great stuff seeking new owners in Yahoo! Auctions! > ______________________________________________________________________ Dedicated Windows 2000 Server PIII 800 / 256 MB RAM / 40 GB HD / 20 GB MO/XFER Instant Activation · $99/Month · Free Setup http://www.pennyhost.com/redirect.cfm?adcode=coldfusiona FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists