Common headers: Trusting headers

Headers from clients can’t be trusted; you can’t trust User-Agent, Date, HTTP-Referer, or anything else that the client sends (just look at the options in curl and HTTP Client: they can be faked easily).

Comments?

If you have comments or questions about this page, please, leave a message on the Negative Space Comments Page.

Lost?

If you’re looking for something here, use the search box in the navigation to limit your search to this part of the site, or use the Negative Space search page.

Jerry

These changes in point of view cannot happen overnight, for they require acceptance of painful truths: that children daydreaming in class, for example, might be using their minds much more profitably than children paying attention. — Andrew Weil (The Natural Mind)

Contents of Negative Space™ as a whole Copyright © 1994-2025 Jerry Stratton. Individual copyrights remain held by their respective authors unless they specify otherwise. Site titles, such as Negative Space, Strange Bedfellows, Biblyon Broadsheet, Highland Games, and FireBlade Coffeehouse are trademarks of Jerry Stratton.

Trusting headers last modified January 11th, 2012.

Common headers: Trusting headers

Related Pages

Comments?

Lost?