On Tue, 2008-01-29 at 17:32 +0100, Per Jessen wrote: > Robert Cummings wrote: > > > The only remedy agaonst remote linking is to embed some kind of > > expiration in the link that accesses the document. > > Wouldn't a check of the REFERER field be enough to disable most remote > links? (I know it is easily forged.)
Referer value is completely worthless. Many people completely disable it-- such as myself :) Cheers, Rob. -- .------------------------------------------------------------. | InterJinn Application Framework - http://www.interjinn.com | :------------------------------------------------------------: | An application and templating framework for PHP. Boasting | | a powerful, scalable system for accessing system services | | such as forms, properties, sessions, and caches. InterJinn | | also provides an extremely flexible architecture for | | creating re-usable components quickly and easily. | `------------------------------------------------------------' -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
