Ok, I've read a lot of posts/articles discussing that $_SERVER global variable (any variable actually) is not to be trusted or at least some stuff from it (everything that starts with HTTP_ can be spoofed).
So is there a finite list of the indexes we can really rely on. We have to rely on something anyhow.
What about REMOTE_USER, REMOTE_ADDR etc.
Can someone give a list of reliable stuff. Or is this more complicated than I think.
Thank you.
which data from $_SERVER is reliable?
Moderator: General Moderators
- Maugrim_The_Reaper
- DevNet Master
- Posts: 2704
- Joined: Tue Nov 02, 2004 5:43 am
- Location: Ireland
- Christopher
- Site Administrator
- Posts: 13596
- Joined: Wed Aug 25, 2004 7:54 pm
- Location: New York, NY, US
10xarborint wrote:I posted a list I had in these forums somewhere a while back.
I think I found it
viewtopic.php?t=48398