|
Posted by Ivαn Sαnchez Ortega on 06/01/07 14:48
e_matthes@hotmail.com wrote:
> I keep reading that $_SERVER['HTTP_REFERER'] can easily be faked. Is
> that true of all server variables, or just some of them? In
> particular, I'm wondering if server_port can be faked.
Unless your HTTP server runs in more than one port, that's pretty difficult.
> I'm interested right now because I want to detect whether the current
> page request is using http or https.
Don't. Set up your web server to serve different pages over HTTP and over
HTTPS.
> I realize there are other ways to ensure the correct delivery of pages
> over https using directory management and htaccess, but I also want to
> understand the server variables better.
Server variables are pretty simple: Whenever the web server receives a
request for a PHP page, it spawns (or dispatches) a thread running the PHP
interpreter. That thread will receive the complete URL, any posted data,
and a handful of information. That "handful of information" is the $_SERVER
variables.
--
----------------------------------
IvΓ‘n SΓ‘nchez Ortega -ivansanchez-algarroba-escomposlinux-punto-org-
http://acm.asoc.fi.upm.es/~mr/ ; http://acm.asoc.fi.upm.es/~ivan/
MSN:i_eat_s_p_a_m_for_breakfast@hotmail.com
Jabber:ivansanchez@jabber.org ; ivansanchez@kdetalk.net
Navigation:
[Reply to this message]
|