Actually I'd change that slightly:
1) Filter/sanitize input (php.net/filter works great for this)
2) Sanity check input (bounds/type checking and then check if it is
legit against the datasource)
a) I use intval() when I expect numeric input. It will scrub out
anything that isn't an integer. Depen
The practice of sending request/response variables to determine what
action or process to perform isn't exactly multi-threading.
What you need to be aware of is cross-site scripting attacks and
cross-site request forgery; XSS and CSRF (pronounce see-surf)
respectively. First two concepts to study
hi all,
i m using a single php script to do several jobs using if statements(for
example /login.php?action=profile instead of profile.php). but one of my
friend said that since php is unable to handle multi threads this is not
advisable. how far is it true
Response
---
** This is an automated reply to your message to Email Abuse. **
Your message has been delivered to our email abuse department. This department
handles complaints from users that are receiving unwanted email.
Title: Your Alert!!
This Alert was sent to php-install@lists.php.net
