On Mon, 27 Jun 2005, Yasuo Ohgaki wrote: > > I disagree. With proper filtering, or using non-user-supplied > > information there is no problem. > > I don't have objection to your statement. > It could be used safely, but there are many applications that > had serious problems even if applications did not require > allow_url_fopen to be enabled.
I don't see what this has to do with each other... > I understands one have different opinion to another, so > the most acceptable configution for most would be make > allow_url_fopen > > - OFF by default > - INI_ALL I've no problems with that, this would be fine for PHP 4.4 regards, Derick -- Derick Rethans http://derickrethans.nl | http://ez.no | http://xdebug.org -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
