Re: Where is the secure setting for text variables?

This WebDNA talk-list message is from

2003


It keeps the original formatting.
numero = 54701
interpreted = N
texte = Dan, On Dec 5, 2003, at 9:28 PM, Dan Strong wrote: > On form 'landing' page: > --------------------------- > [hideif [referrer]^the_form.html] > [redirect the_form.html] > [/hideif] But don't a lot of browsers and 'anti-piracy' tools block sending the referrer these days? I had thought of this approach but was concerned as I don't want to prevent real messages from going through. But maybe I just have to risk that :( I have spammers! > On Fri, 5 Dec 2003 18:21:01 -0800 > Jesse Proudman wrote: >> >> On Dec 5, 2003, at 5:52 PM, CN Stuff wrote: >> >>> I have encountered someone trying to hijack some forms on one of my >>> sites by posting the form directly. I believe I can solve this by >>> turning this setting on (WebCat 4.5.1 - Linux) but there is no such >>> setting in the prefs. >> >> The secure text variables just prevent some one from overwriting >> variable values by posting them. It's not in the admin, you have to >> enter it manually into the Preferences database... It won't stop >> people from posting forms to your pages... I was thinking I could pass something from the previous page that was required on the posted page I could somehow thwart this loser. I guess I will just go with the referrer. Thanks Dale ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Where is the secure setting for text variables? ( "Dan Strong" 2003)
  2. Re: Where is the secure setting for text variables? ( CN Stuff 2003)
  3. Re: Where is the secure setting for text variables? ( Donovan Brooke 2003)
  4. Re: Where is the secure setting for text variables? ( Donovan Brooke 2003)
  5. Re: Where is the secure setting for text variables? ( John Peacock 2003)
  6. Re: Where is the secure setting for text variables? ( Glenn Busbin 2003)
  7. Re: Where is the secure setting for text variables? ( Brian Fries 2003)
  8. Re: Where is the secure setting for text variables? ( "Dan Strong" 2003)
  9. Re: Where is the secure setting for text variables? ( Alex McCombie 2003)
  10. Re: Where is the secure setting for text variables? ( Terry Wilson 2003)
  11. Re: Where is the secure setting for text variables? ( CN Stuff 2003)
  12. Re: Where is the secure setting for text variables? ( "Dan Strong" 2003)
  13. Re: Where is the secure setting for text variables? ( Jesse Proudman 2003)
  14. Where is the secure setting for text variables? ( CN Stuff 2003)
Dan, On Dec 5, 2003, at 9:28 PM, Dan Strong wrote: > On form 'landing' page: > --------------------------- > [hideif [referrer]^the_form.html] > [redirect the_form.html] > [/hideif] But don't a lot of browsers and 'anti-piracy' tools block sending the referrer these days? I had thought of this approach but was concerned as I don't want to prevent real messages from going through. But maybe I just have to risk that :( I have spammers! > On Fri, 5 Dec 2003 18:21:01 -0800 > Jesse Proudman wrote: >> >> On Dec 5, 2003, at 5:52 PM, CN Stuff wrote: >> >>> I have encountered someone trying to hijack some forms on one of my >>> sites by posting the form directly. I believe I can solve this by >>> turning this setting on (WebCat 4.5.1 - Linux) but there is no such >>> setting in the prefs. >> >> The secure text variables just prevent some one from overwriting >> variable values by posting them. It's not in the admin, you have to >> enter it manually into the Preferences database... It won't stop >> people from posting forms to your pages... I was thinking I could pass something from the previous page that was required on the posted page I could somehow thwart this loser. I guess I will just go with the referrer. Thanks Dale ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ CN Stuff

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Newbie from and old bee (1997) [WebDNA] duplicate cookies being stored in browser (2010) WebCat2b13MacPlugIn - [shownext method=post] ??? (1997) [Fwd: Rotating Banners ... (was LinkExchange)] (1997) listfiles shows invisible files ... (1999) weird convertchars behavior (2000) Sku numbers (1997) Only charge card when product shipped ? (1997) Emailer error 571 (1998) WebCommerce: Folder organization ? (1997) Time code! (2002) More on the email templates (1997) Where is f2? (1997) Help with database strategy (1998) WCS Newbie question (1997) Cart doesn't interpret tag! (1997) Can't Update records (1997) Store Builder, technical infos (1998) [Announce]: Web server security and password protection (1997) faxing orders (2000)