--- [EMAIL PROTECTED] wrote: > My question: Is I.E. 6.01 SP1 doing something to foil the CSRF > attack, i.e. only allow image extensions .gif .png .jpeg?????
This seems highly unlikely. Can you show us the code you're using to test? Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php