[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: lynx-dev HTTP_REFERER missing when posting from CGI
From: |
Doug Kaufman |
Subject: |
Re: lynx-dev HTTP_REFERER missing when posting from CGI |
Date: |
Mon, 31 Dec 2001 16:43:32 -0800 (PST) |
On Mon, 31 Dec 2001, Walter Ian Kaye wrote:
> At 11:26a +0000 12/31/2001, David Woolley didst inscribe upon an
> electronic papyrus:
>
> >Suppressing the query string is a policy issue.
>
> But why doesn't the lynx.cfg setting have any effect? I think that is a bug!
It does have an effect. You have to set the correct item.
> >From the Lynx point of view, I believe it is simply that it might
> >contain passwords, but, it is also worth noting that if you look at
> ...
> With that attitude, Lynx should summarily reject all third-party cookies.
> It doesn't, and neither should it summarily reject the referer query string.
Lynx is configurable on this issue. See "REFERER_WITH_QUERY" in
lynx.cfg.
Doug
__
Doug Kaufman
Internet: address@hidden
; To UNSUBSCRIBE: Send "unsubscribe lynx-dev" to address@hidden