[thelist] HTTP_WEFERER - The Curse of Elmer Fudd....

Timothy J. Luoma luomat at operamail.com
Wed Sep 3 12:57:15 CDT 2003


On Wed, 03 Sep 2003 09:38:02 -0700, Anthony Baratta <Anthony at Baratta.com> 
wrote:

> We use a shopping cart COM object (IIS Cart) that has an option to check 
> the referrer in order to help against hacking the shopping cart forms. 
> While it doesn't beat good coding practices, it's a nice hurdle to 
> implement.

What about others who use their browser preferences (i.e. Opera) or other 
proxy to disable referrer logging?

It isn't a particularly good measure, IMO... not as bad as requiring 
Javascript, but not a good one either.

TjL



More information about the thelist mailing list