Re: Re: Re: Re: Secure or not secure, that question.

in reply to Re: Re: Re: Secure or not secure, that question.
in thread Secure or not secure, that question.

tomhukins, I still don't understand why relying on an HTTP_ environment variable would not be recommended. I am asking because I rely on them all the time. So they indicate they are coming from the client....isn't that what akm2 is looking for?

Comment on Re: Re: Re: Re: Secure or not secure, that question.

Replies are listed 'Best First'.
Re: Re: Re: Re: Re: Secure or not secure, that question. by merlyn (Sage) on Mar 13, 2001 at 22:58 UTC
They come untrusted from the client. Trivial to fake, and often stripped at security gateways or mangled by proxies. -- Randal L. Schwartz, Perl hacker	[reply]

In Section Seekers of Perl Wisdom