PDA

View Full Version : Post Referrer Whitelist Questions


neverstop
01-18-2008, 12:53 AM
Hi,

I am in the process of launching a website using the vb poll functions. One of the features I am developing will be a "Add this poll to your blog/website" type service - the user can click on a link and will be shown the html of the poll form to copy/paste to their website. The problem is with the Post referrer whitelist since the polls use POST for the poll voting.

Can anyone think of a way I could (safely) bypass the whitelist for poll.php?

Cheers,
Ian

Marco van Herwaarden
01-18-2008, 07:49 AM
This would be extreme difficult i think without doing concessions to security. Your problem is that the list of reffering domains is unknown and might change at any time.

neverstop
01-18-2008, 11:18 PM
So the fact that its only poll.php where I want to ignore the whitelist has no bearing on the risk? I'm not a programmer so I'm not really sure about this sort of stuff. Can anyone think iof a workaround?

Hornstar
01-18-2008, 11:34 PM
just wanted to say, that is a great idea, and if you ever do get it to work, I would love to try it out as well.