More of a something I'm pondering then concerned about...
JAB Creations
5:00 am on Mar 21, 2005 (gmt 0)
You can take a form and stick it to any page on the internet and log in from one domain on to another. I'm just curious if (not how) this can be stopped. I would imagine this would have something to do with the referrer but I'm no apache expert. ^.^
jdMorgan
10:07 pm on Mar 22, 2005 (gmt 0)
I'd imagine you could require a cookie on the login page - set only by the correct domain.
If this makes no sense, then I didn't understand your question. ;)
