"Ben-Nes Michael" <[EMAIL PROTECTED]> wrote in message
022201c12498$79178ce0$[EMAIL PROTECTED]">news:022201c12498$79178ce0$[EMAIL PROTECTED]...
> The problem still stays if you open php to system commands like `echo
> /etc/passwd` or using system() ....
A problem is also that other web-programers can read your source code
through PHP.
An example from my page is this:
My homepage is here: /hotel/<my domain>/WWW
I can make a php-script that opens /hotels/<some other domain>/WWW ,
list the files, view them, steal code from others etc etc.
Hope what I wrote gave some sort of meaning :-)
/Søren
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
