[thelist] HTTP_WEFERER - The Curse of Elmer Fudd....
Timothy J. Luoma
luomat at operamail.com
Wed Sep 3 12:57:15 CDT 2003
On Wed, 03 Sep 2003 09:38:02 -0700, Anthony Baratta <Anthony at Baratta.com>
wrote:
> We use a shopping cart COM object (IIS Cart) that has an option to check
> the referrer in order to help against hacking the shopping cart forms.
> While it doesn't beat good coding practices, it's a nice hurdle to
> implement.
What about others who use their browser preferences (i.e. Opera) or other
proxy to disable referrer logging?
It isn't a particularly good measure, IMO... not as bad as requiring
Javascript, but not a good one either.
TjL
More information about the thelist
mailing list