HTTP_REFERER and SSL?
From: Dave (DavidTabaka@hotmail.com)
Date: 03/28/03
- Next message: Frank Balluffi: "importing DER-encoded RSA private key"
- Previous message: Cy Huckaba: "Re: Protect Non-ASP Files"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Dave" <DavidTabaka@hotmail.com> Date: Fri, 28 Mar 2003 10:53:21 -0800
Hi,
I'm trying to determine what really happens to the
HTTP_REFERER variable over SSL.
I've read in ASP.NET Security by Wrox that the referer
variable will be dropped when you switch from an HTTPS
connection to HTTP.
Does this mean if both are using SSL, it will be included
in the header. I've also read somewhere that it isn't
used at all when using HTTPS, even if both sites are
secure.
I'd really like some docs to describe this. Thanks, Dave.
- Next message: Frank Balluffi: "importing DER-encoded RSA private key"
- Previous message: Cy Huckaba: "Re: Protect Non-ASP Files"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|