I do not want my users to change anything in the querystring on the page that submits that data to the database on an order. <BR><BR>My solution was if they try to change the data and submit it then the http_referrer would = "" and I would then redirect them to the home page.<BR><BR>Is there a better way to have secured the data to not be affected by what they type in the url.