6
Thanks Dave_L - helpful as always.
My problems are these :
1) I am not yet using 2.2 (I like to leave updates for a while before updating).
2) I am using version 2.0.13.
3) I have done searches in my site files for the following code strings and no hits are returned :
a) if ($ref == '') {
return false;
b) if ($ref == '') {
c) $ref = xoops_getenv('HTTP_REFERER');
d) xoops_getenv('HTTP_REFERER');
and a few others for which I forget. The only one that returned any hits was xoops_getenv('HTTP_REFERER'); which I found in a file include/comment_delete.php. That was it. No others.
I have done a search for the xoopssecurity.php file but that does not appear to exist in 2.0.13. If I am wrong (and it should be there) can someone please tell me that because maybe I have not fully updated properly?
I have looked at the following posts (many with contributions from me relating to earlier version of Xoops)
1 2 and
3.
(As well as others in the help etc. )
In summary, I cannot find instruction on how to disable the HTTP Referer check on version 2.0.13.
Any more help available?
Thanks
Ted
