> Have PHP reject (fail to process, die, whatever) a hit that is
> anomalous. Definitions of anomalous:
> 1. GET variables set while METHOD != GET
>   i.e.
>       <form action="foo.php?x=1" method=POST>
>       ...
>       </form>

Huh?  I use this all the time in my apps.  There is absolutely nothing
wrong with having both GET and POST method variables at the same time.
Disallowing this would break almost every app I have ever written.

> 2. when a uploaded file fails is_uploaded_file().
>    I felt bad when I saw is_uploaded_file() introduced - it is such a
> cheezy function call; people shouldn't even have to call it themselves,
> and I can imagine no situation (except for laziness) that you would not
> call it.

In practise people simply call move_uploaded_file() which performs this


PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to