Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
Maxim Grechushnikov2015-09-22 12:47:46
Apache HTTP Server
Maxim Grechushnikov, 2015-09-22 12:47:46

Is it possible to disable POST from another server somehow?

There is an old project. Someone uses CSRF to send mail to mailboxes of partner companies.
Could you advise how to protect against sending messages through the form at a lower cost? The captcha is worth it.

I suspect that some kind of script is posting the necessary fields to the right address. Decided that it is possible to forbid POST from all hosts/IP except the. Is it possible to do so?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
T
TyzhSysAdmin, 2015-09-22
@maxyc_webber

A POST request is sent not by the server, but by the client, and filtering all this stuff by IP will not work.
google for CSRF-token for your PL

Similar questions
P
Paltos2017-10-17 02:58:41
How to make case-insensitive requests for images? 2Reply
D
Dmitry Filandor2017-10-20 11:18:59
How to make xampp and .htaccess work? 0Reply
I
Ivan Ivanov2020-03-09 13:27:28
How to clear apache cache? 0Reply
E
eugene1592020-03-09 15:28:00
How to overcome 504 Gateway Time-out when making a long request on Open Server? 3Reply
K
kiril90112017-10-28 14:53:39
Redirect from folder to file? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question