Michael Romagnoli [SMTP:[EMAIL PROTECTED]]
Sent: 22 February 2002 12:21
To: [EMAIL PROTECTED]
Subject: Re: [PHP] overwriting PHP_SELF and PHP_AUTH_
I have a special set of information retrieved from a while loop that
I would
like a person to be able to edit a
I have a special set of information retrieved from a while loop that I would
like a person to be able to edit and send back into a MySQL table.
I know all of the basic MySQL commands for doing such, but the PHP side to
get the input from the form to go in is really stumping me.
This is what I h
Well, in this particular case it really makes no difference as
PHP_AUTH_* is data that comes from the user anyway. Whether it is sent in
the GET-method data or in the Authenticate header is completely irrelevant
and turning register_globals off does not make any difference whatsoever.
The reason
omono
> -Original Message-
> From: Lars Torben Wilson [mailto:[EMAIL PROTECTED]]On Behalf Of Lars
> Torben Wilson
> Sent: Friday, February 22, 2002 3:40 PM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: [PHP] overwriting PHP_SELF and PHP_AUTH_
>
&g
On Thu, 2002-02-21 at 22:31, K.Tomono wrote:
> Hi there.
>
> This must be a curious question, but I want to know...
Globals, and register_globals = on, are insecure for exactly this
reason. This is why new versions of PHP will default to register_globals
= off, and why it's a good idea to use r
Hi there.
This must be a curious question, but I want to know...
Recently I've checked several globals, how it is overwritten.
the globals are $PHP_SELF and $PHP_AUTH_USER.
the first time, $PHP_AUTH_USER.
This is overwritten by the http GET values when such a following uri. (and
Post will be s
6 matches
Mail list logo
