changing action with appended key/value pairs in a POST
I have a multi-stage cgi I'm currently working on, and as I progress thru the
stages (the form uses POST not GET for reasons of data-size) I was hoping to be
able to simply add ?step=confirm or ?step=finish to the form action
( -action=$htmlform{action}?step=confirm, ... )
However it's not working, and I'm getting the distinct impression that when the
action is a POST, CGI.pm ignores anything WRT the uri request line...
Is this true?
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/ http://learn.perl.org/first-response
reading a client file
hi to all,
I need to read a file selected by (and stored in the computer of) users.
My first idea was on uploaded files:
(all variables are sent correctly;
$_ is the name of the file
$file is a relative pathname)
s/.*[\/\\](.*)/$1/;
$file = upnull/.$_;
open(LOCALE, $file) or die(problema: $!);
binmode LOCALE;
while($file)
{
print LOCALE;
}
close(LOCALE);
I'm curious to know why that script doesn't work and I need to know if
there's a more sicure way to do it (for instance reading the file
without copying it on the server...)
thank you all,
alladr
|^|_|^|_|^| |^|_|^|_|^|
|| ||
|| ||
||*\_/*\_/*\_/*\_/*\_/* ||
| |
| |
| |
| http://www.e-allora.net|
| |
| |
**
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/ http://learn.perl.org/first-response
$ENV{'HTTP_REFERER'}
Hi,
I want to know the web site that someone came from,
and so I was planning on reading $ENV{'HTTP_REFERER'}
to figure it out. How reliable is that? Do browsers
or other situations block it or obfuscate it? Is
there another way to do it or any other issues
involved? I'm using apache on red hat.
Thanks,
Denzil
__
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/ http://learn.perl.org/first-response
Re: $ENV{'HTTP_REFERER'}
Denzil Kruse wrote:
Hi,
I want to know the web site that someone came from,
and so I was planning on reading $ENV{'HTTP_REFERER'}
to figure it out. How reliable is that? Do browsers
or other situations block it or obfuscate it? Is
there another way to do it or any other issues
involved? I'm using apache on red hat.
Thanks,
Denzil
Depends on your definition of reliable. From experience it would seem
most browsers set it pretty reliably.
Having said that, it is just a value passed as part of the HTTP request
so anyone can spoof it at anytime, so relying on it from a security
stand point, well, isn't secure.
I imagine if you are doing something where someone can benefit from
obfuscating it, they will. If you want to use it for ease of UI
handling (aka redirects, prepopulating fields, marketing metrics) I
think you are safe.
HTH,
http://danconia.org
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/ http://learn.perl.org/first-response
Re: $ENV{'HTTP_REFERER'}
On Wed, Aug 24, 2005 at 02:12:56PM -0700, Denzil Kruse wrote:
I want to know the web site that someone came from,
and so I was planning on reading $ENV{'HTTP_REFERER'}
to figure it out. How reliable is that?
Reliable enough for general interest and for finding some sites with
links to moved pages on your site. Not reliable enough to depend on.
Do browsers or other situations block it or obfuscate it?
Often. Its an optional header, isn't supposed to be sent when arriving
from an https page, and is munged by a goodly number of personal
firewalls.
Is there another way to do it
No
--
David Dorward http://dorward.me.uk
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
http://learn.perl.org/ http://learn.perl.org/first-response
