Skip to content

Instantly share code, notes, and snippets.

@bigshebang

bigshebang/referer_check.php

Last active November 21, 2016 06:41
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save bigshebang/c12fa853cf2eae7e255c51f71735856c to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save bigshebang/c12fa853cf2eae7e255c51f71735856c to your computer and use it in GitHub Desktop.
Download ZIP
legit referer check
Raw
referer_check.php
function referer_good($id)
{
//if id isn't numeric can't be valid
if(!is_numeric($id))
return false;
$referer = "";
if(!empty($_SERVER['HTTP_REFERER']))
$referer = strtolower($_SERVER['HTTP_REFERER']);
else
return false;
//$server = $_SERVER["SERVER_ADDR"]; //gives the private ip
//$server = "54.172.225.153";
$good_referer = "http://54.172.225.153/messages.php?id=" . $id;
//has to match good_referer completely
if($referer === $good_referer)
return true;
//should only get here if checks above failed
return false;
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment