Solved

Relaibility of $_SERVER['HTTPS'] if user coming through proxy server?

Posted on 2004-09-23
4
217 Views
Last Modified: 2006-11-17

Hi, this may be a stupid question, but will the value of $_SERVER['HTTPS'] be affected if a user coming to my site through a proxy server?  I encountered some reliability issues around usign the $_SERVER['HTTP-REFERRER'] variable.  The PHP documentation mentions that HTTP-REFERRER is not reliabile, but makes no mention of ['HTTPS'].

Is it a reliable method? What is people's experience using $_SERVER['HTTPS'], especially in regards to proxy servers, etc?

Thanks for your help!
0
Comment
Question by:lauriebloyer
  • 3
4 Comments
 
LVL 48

Expert Comment

by:hernst42
ID: 12137843
$_SERVER['HTTPS'] is always set if the connection to your server is made via SSL regardingless wether the user uses a proxy or not.
0
 
LVL 48

Accepted Solution

by:
hernst42 earned 500 total points
ID: 12137877
the HTTP-REFERRER is set on the information given by the browser, so some proxies may remove that information from the clients request and you may not relia on that.
the  $_SERVER['HTTPS'] is set by the server and not taken from any information given by the user/browser
0
 
LVL 9

Expert Comment

by:_GeG_
ID: 12138109
afaik you cannot use a https connection over a proxy
0
 
LVL 48

Expert Comment

by:hernst42
ID: 12138190
If the proxy support SSL/https you can use the proxy also with https. Then the proxy only bypasses the connection. The proxy can't see which information is tunneld via https, it only transfers the data whichout any caching.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Saving image into server to get url later 1 30
Download a website to hdd 2 48
unset shopping cart session 15 29
Update from TABLE-A to TABLE-B 5 34
I imagine that there are some, like me, who require a way of getting currency exchange rates for implementation in web project from time to time, so I thought I would share a solution that I have developed for this purpose. It turns out that Yaho…
Password hashing is better than message digests or encryption, and you should be using it instead of message digests or encryption.  Find out why and how in this article, which supplements the original article on PHP Client Registration, Login, Logo…
The viewer will learn how to count occurrences of each item in an array.
The viewer will learn how to create a basic form using some HTML5 and PHP for later processing. Set up your basic HTML file. Open your form tag and set the method and action attributes.: (CODE) Set up your first few inputs one for the name and …

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now