[prog] setting referer checking on in php
April
april at farstrider.org
Fri Aug 19 06:32:46 EST 2005
I think it's a misleading error. HTTP_REFERER can be spoofed or left
unset by a browser, so it's unlikely that not having that data would
make the script fail silently. Would you be willing to send the
formmail.php file? It could be failing for any number of reasons, but
my guess is it's because register_globals went from on to off (likely if
you upgraded PHP from pre-4.2).
If it DID stop working because of register_globals getting turned on,
that probably means the script is insecure and could be used by third
parties to send spam from your server. So don't just turn on
register_globals to make it work.. fix the script.
Nicki Handy wrote:
> Hi- I've just upgraded a mac to Tiger and also upgraded the mail server.
> I copied the old php.ini over into the new settings but for some reason
> formmail.php is not working. I didn't set it up, one of the programmers
> I work with uses it. The error I get in the web logs says
> [PHPFormMail] HTTP_REFERER checking is turned off.
>
> So, I think this would make it fail and thus, no mail from the form. But
> I went into php.ini and the variable for referer is set to blank. I
> tried changing it to 1 and "on" but neither worked. Is there another way
> to set that? Or is that a misleading error and I do in fact have it
> turned on? I restarted the server after changing it.
>
> Thanks a lot,
> Nicki
>
>
> _______________________________________________
> Programming mailing list
> Programming at linuxchix.org
> http://mailman.linuxchix.org/mailman/listinfo/programming
>
>
>
More information about the Programming
mailing list