As $_POST data is supplied by the client you can not prevent trickery. On 3 Jun 2010 07:05, "Bob Meetin" <bobm at dottedi.biz> wrote: > I am developing some php forms that require numerous arguments in the > $_POST string. This works fine. Is there anything that can be > reasonably done to not make all the ooohs and ahhhs display in the URL > address bar which might appear tempting to some viewers? > > Or perhaps better, what is a standard way to bullet-proof $_POST > variables to prevent trickery? > > -Bob > -- > > * * Please support the community that supports you. * * > http://evolt.org/help_support_evolt/ > > For unsubscribe and other options, including the Tip Harvester > and archives of thelist go to: http://lists.evolt.org > Workers of the Web, evolt !