Security Basics mailing list archives
Re: Re: HTTPS redirections
From: sf () frenzy org
Date: 27 Aug 2007 18:25:22 -0000
Note that since the Referer: field is passed by the client, this is relatively easy to spoof, so other security mechanisms should be used in conjunction with Referer field checking, if it's used at all.
Current thread:
- HTTPS redirections anthony (Aug 24)
- Re: HTTPS redirections Jason Ross (Aug 24)
- RE: HTTPS redirections whip (Aug 27)
- RE: HTTPS redirections Sergii Khomenko (Aug 28)
- RE: HTTPS redirections theog (Aug 28)
- RE: HTTPS redirections anthony (Aug 27)
- <Possible follow-ups>
- Re: Re: HTTPS redirections sf (Aug 28)
- Re: HTTPS redirections Jason Ross (Aug 24)