I am always having trouble with developing games in flash and watching the highscore tables get hacked, I have done some reading on flash 8 security and now with flash 7 / 8 plugin you cannot read & write remote external files thats great! But what happens if someone just uses the flash 6 plugin to post variables to the database. Is there a way to make sure your external php/asp server-side scripts only except post requests from flash apps in its domain?