On Wed, 20 Apr 2005 13:00:48 -0400, in php.internals [EMAIL PROTECTED]
(Sean Coates) wrote:
>Provided that the code is good: +1
>These sounds like great features (especially for session fixation/hijack
>prevention).
But as long as stuff like
print_r(glob("{.,/tmp}/*",GLOB_BRACE));
.. are possible even in safe_mode/open_basedir-restrictions, these new
functions will have pretty small effect unless one works his way
entirely around the session functionality in the first place...
E.g.:
http://basedir.ter.dk/globall.php
--
- Peter Brodersen
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
