Reply to Re: [PHP] Can I prevent Server variables from being spoofed ? — PHP

Posted by Brent Baisley on 05/20/05 23:58

Think about it. The server can only tell what the user agent is by what
the user reports. For all you know it could just be a perl script or
just a terminal session reporting as being Quicktime.
So yes, a script kiddie could spoof the user agent. Heck, some browsers
even allow you to specify the user agent you want to report.

On May 20, 2005, at 2:46 PM, Graham Anderson wrote:

> Can the server variable 'user agent' be modified/spoofed by the user?
>
> I have a bunch movies that I want to only open if the user agent
> contains Quicktime Player...
> In my case, if the user agent string contains Quicktime Player, a
> movie url is written for Quicktime to open....
> If the user agent contains a browser, I want php to deny
> access....not write the url for Quicktime to read
>
> is is possible for a script kiddie to spoof user agent server
> variables to fool the server ?
>
>
> many thanks :)
>
> g
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>
--
Brent Baisley
Systems Architect
Landover Associates, Inc.
Search & Advisory Services for Advanced Technology Environments
p: 212.759.6400/800.759.0577

[Back to original message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация