[Owasp-guide] Mistake in Authentication document

Danilo Nascimento daniloleke at gmail.com
Fri Sep 5 09:46:53 EDT 2008


Hi Guys!

When i was reading the OWASPGuide2.0.1 i found a mistake in
Authentication document,
the php code sample in "Multiple Key Lookups" is actually the php code
sample for "Referer Checks".


The code below appears twice:

PHP
if ( $_SERVER['HTTP_REFERER'] != 'http://www.example.com/index.php' ) {
       throw …
}


Regards,
Danilo Nascimento


More information about the Owasp-guide mailing list