I've been given the task of putting a website up for my department. Unfortunately our organizations IT division does not have MySQL installed on the server and the prospect of it looks dim. :( Being [b]very[/b] new to PHP, I find myself in a quandry. I have a form, to update my department heads message on the main page, that is an include based on a users cookie. However, I need to make sure that no one stumbles across this form and updates it unless they are authorized. Does PHP provide a way to detect the exact referring page? Would this be poor security due to, my understanding, some servers not reporting the referring page? I've thought about splitting the form so the submit button is not in the include file but it looks like garbage when I do that. Any help for a newbie would be greatly appreciated. Thanks.