check HTTP_REFERER. If it's not your server. toss it. It's not the most
secure way but check the page, there are other variables you can use to
accomplish the same thing.
http://www.php.net/manual/en/language.variables.predefined.php
Cal
http://www.calevans.com
-----Original Message-----
From: Randy Johnson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 9:48 PM
To: [EMAIL PROTECTED]
Subject: [PHP] security
In PHP how do I make it so a script cannot be called from somewhere else
other than from my server.
Example
http://domain.com/mail.php is my mail script that is called by
http://domain.com/signup.html
How do I make it so
http://somebodyelsesdomain.com/signup.html cannot call the mail.php script.
thanks
Randy
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
