 |
 |
 |
 |
|
|
Date: 07/04/01
- Next message: hparissi <email protected>: "[PHP-DEV] Bug #11878: __DATE__ /__TIME__ constants"
- Previous message: Alexander Wagner: "Re: [PHP-DEV] trans-sid and Location: Header"
- Maybe in reply to: sterling hughes: "[PHP-DEV] Security?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> > I also think that PHP5.0 since we are breaking
> language compat,
> > perhaps we should turn off register_globals by default? I
> just see to
> > many chances for fscking up things big time when using that
> > functionality....
>
> I still don't agree on this particular point. All this does is limit
> where data can come from.
And also prevent namespace clashes, eg a GET/POST variable named the
same
as session variables. Turning register_globals off would probably
prevent
a lot of head scratching for peeps who've not come across this issue
before.
-- Richard Heyes-- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: php-dev-unsubscribe <email protected> For additional commands, e-mail: php-dev-help <email protected> To contact the list administrators, e-mail: php-list-admin <email protected>
- Next message: hparissi <email protected>: "[PHP-DEV] Bug #11878: __DATE__ /__TIME__ constants"
- Previous message: Alexander Wagner: "Re: [PHP-DEV] trans-sid and Location: Header"
- Maybe in reply to: sterling hughes: "[PHP-DEV] Security?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]