No, there is nothing you can really do about that, short of building
validation into your program so people can't do that.

Hell, HTTP is clear text, so any free packet sniffer would tell them where
they are pulling from.

Odds are a view source of the page would be enough of a clue in also.

You'll have to use validation and sessions most likely.

Adam Lang
Systems Engineer
Rutgers Casualty Insurance Company
http://www.rutgersinsurance.com
----- Original Message -----
From: <Empier4552@a...>
To: "professional php" <pro_php@p...>
Sent: Friday, April 05, 2002 10:28 AM
Subject: [pro_php] Re: Erasing Traces of a page from a computer


> In a message dated 4/5/2002 10:19:03 AM Eastern Standard Time,
> aalang@r... writes:
>
>
> > Not short of writing a java app that will pop up a dialog asking for
> > permission to run.
> >
> > Wouldn't you be a bit scared if someone could write a program that runs
on
> > a
> > website that erases/modifies your local files?
> >
>
> er message was sent prematurely
>
> This is true. However trying to write a PHP Script for a download site.
The
> thing is we need to mask the actual download link and we know some people
are
> persistant and smart enough to use a history and tmps etc to back track
the
> download url and possibly get to download more files etc they shouldnt be
> able to. Anyway to remedy that problem?
>
>
>