Francois Legare
[EMAIL PROTECTED]
> -----Original Message-----
> From: Rasmus Lerdorf [mailto:[EMAIL PROTECTED]]
> Sent: April 23, 2001 9:30 PM
> To: Plutarck
> Cc: [EMAIL PROTECTED]
> Subject: Re: [PHP] Why is it dangerous to have register_globals on?
> Never never never trust user-supplied data implicitly. Always check
> anything that could possibly come from the user. For internal variables,
> always initialize them and just generally think things through as you
> write your scripts. This is no different in PHP than in any other
> scripting language used for web work.
>
> -Rasmus
Hi Rasmus,
can you, or anyone else, give more examples to help me understand what you
mean by "generally think things through" or give pointer(s) on the web where
this topic is being discussed and plenty of examples are given. Actually,
any advices, tips and tricks on how to code securely and how to make sure
user-supplied data are never implicitly trusted would be more than welcomed.
thanks
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
