$referer = isset($_server['http_referer']) ? $_server['http_referer'] : null;
$host = $_server['http_host'];
echo '提交过来的地址:'.$referer;
echo '
';
echo '本站域名:'.$host;
echo '
';
echo substr($referer,7,strlen($host));
if(substr($referer,7,strlen($host)) != $host){
echo '非法操作';
}else{
echo '正常操作';
}