merely checking a variable is safe (for ex:) if (empty($X)) or if (defined($X)) or if ($X)
I just hope you don't check for them and go on to use the dirty values w/o any sanity or bounds checking on them. :) > -----Original Message----- > From: Ross Fleming [mailto:[EMAIL PROTECTED]] > Subject: Re: [PHP-WIN] re: $POST vars > > > If by "safe" you mean physically safe, then yes, I can > confirm that you > will be in no physical danger if you make this assumption, > neither the web > server nor the browser will explode if you try this, thereby > leaving you > rather safe... > > ;-) > > Ross > > Matt Babineau wrote: > > > When submitting a page to itself, is it safe to check for > the existance > > of the $POST variable to tell whether the form was > submitted and if it > > was to perform and action utilizing the post variables? > > > > Matt Babineau > > Freelance Internet Developer > > e: <mailto:[EMAIL PROTECTED]> > > [EMAIL PROTECTED] > > p: 603.943.4237 > > w: <http://www.illuminatistudios.com/> http://www.illuminatistudios.com > > -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
