>Putting the page in a frame is _not_ a workaround, it's just stupid. It's
very easy to see what the source of a frame is.
Stupid? Come on now - let's play nice. Although not very secure, it
does keep normally prying eyes from seeing the QS right in front of
them. Plus, seeing the source of the page would not easily get them
the Querystring anyway.
Keep in mind the OP inferred that he could not change the way the page
was called. One possible option would be to have the page called just
do a grab of the Querystring and then forward the data on to another
page as form variables inside a POST submission.