On Tuesday 07 December 2004 01:32, Richard Lynch wrote:
> steve wrote:
> > Jason Wong wrote:
> >> With register_globals enabled, the problem is not with the $_POST, $_GET
> >> etc variables (although yes you should always validate data when they
> >> come
> >> from untrusted sources). The problem i
steve wrote:
> Jason Wong wrote:
>
>> With register_globals enabled, the problem is not with the $_POST, $_GET
>> etc variables (although yes you should always validate data when they
>> come
>> from untrusted sources). The problem is that malicious users can pollute
>> your namespace and if you do
Jason Wong wrote:
> With register_globals enabled, the problem is not with the $_POST, $_GET
> etc variables (although yes you should always validate data when they come
> from untrusted sources). The problem is that malicious users can pollute
> your namespace and if you do not initialise variabl
On Monday 06 December 2004 22:50, steve wrote:
> Yeah - as I mentioned in the original post, all my pages start with that.
> I'm a little PO'd about the change to register_globals on. Alas, trying to
> switch it off in an .htaccess file causes a 500 error. That said, I never
> use variables passed
4 matches
Mail list logo
