 |
 |
 |
 |
|
|
Date: 01/13/01
- Next message: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Previous message: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/functions datetime.xml"
- Next in thread: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Maybe reply: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Maybe reply: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Maybe reply: Damien Seguy: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
ronabop Fri Jan 12 23:35:29 2001 EDT
Modified files:
/phpdoc/en/chapters security.xml
Log:
More secure example
Index: phpdoc/en/chapters/security.xml
diff -u phpdoc/en/chapters/security.xml:1.13 phpdoc/en/chapters/security.xml:1.14
--- phpdoc/en/chapters/security.xml:1.13 Tue Nov 7 15:11:07 2000
+++ phpdoc/en/chapters/security.xml Fri Jan 12 23:35:28 2001
@@ -390,7 +390,7 @@
<title>More secure file name checking</title>
<programlisting role="php">
<?php
-$username = $HTTP_REMOTE_USER;
+$username = get_env("REMOTE_USER");
$homedir = "/home/$username";
if (!ereg('^[^./][^/]*$', $userfile))
- Next message: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Previous message: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/functions datetime.xml"
- Next in thread: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Maybe reply: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Maybe reply: Ron Chmara: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Maybe reply: Damien Seguy: "[PHP-DOC] cvs: phpdoc /en/chapters security.xml"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]