On 9 Apr 2011, at 16:55, thebigdog wrote: >> Restricting access by IP would be a great option if it would be secure >> enough. I wouldn't even have to have the secure files outside of web root. I >> could simply use Apache to restrict access to a certain directory to a >> certain IP. I thought that HTTP_REFERRER wasn't reliable though. Isn't that >> easy to spoof? > > Are you asking with regards to php or apache? Check out mod_access and that > should give you some other options that you can use with apache.
Either. Is it possible for someone to spoof their IP address? _______________________________________________ UPHPU mailing list [email protected] http://uphpu.org/mailman/listinfo/uphpu IRC: #uphpu on irc.freenode.net
