You may not be aware of this, but the HTTP referer, like the IP address, can be spoofed. Using this as a method of security is a bad idea as it is trivial to build an application (or use pre-made "script kiddie" tools) that fakes this information for you.

Cheers,
Ovid

Join the Perlmonks Setiathome Group or just click on the the link and check out our stats.