How to implement a non-outbound submission form for ASP

In order for the ASP to minimize server-side workloads, you should use JavaScript more, and submit all submitted fields to the server using JavaScript or VBScript, so that the server does not have to be tested, and someone may modify the script to submit it locally , so there is a problem of security submission, so you should ask to commit from the server fault path, so that other addresses commit the submission is not invalid:

The code is as follows:

<%

Server_v1=cstr (Request.ServerVariables ("Http_referer"))

Server_v2=cstr (Request.ServerVariables ("SERVER_NAME"))

If Mid (Server_v1,8,len (SERVER_V2)) <>server_v2 Then

Response.Write "<br><br><center><table border=1 cellpadding=20 bordercolor=black bgcolor=# Eeeeee width=450> "

Response.Write "<tr><td style= ' font:9pt Verdana ' >" Response.Write "You have submitted a wrong path, prohibit the submission of data from outside the site please do not mess with this parameter! "

Response.Write "</td></tr></table></center>"

Response.End

End If

%>


How to use:

1. Save the above code as checkpath.asp

2. Reference this detection code on a page that encounters a form submission
<!--#include file= "checkpath.asp"-->