John, If your authentication class holds the passwords inside wouldn't running the 'strings' utility on the file reveal all the passwords even if the php script is Zend Encoded?
Ilia On June 3, 2002 04:44 am, John Lim wrote: > Hi Sebastian, > > Unfortunately some people are paranoid about security. > > We might not want people to fiddle around with the internals of a class, > for example > an authentication class which holds the passwords of users. Even if the > whole web site > is Zend Encoded, doing a var_dump on $GLOBALS will reveal a lot about .the > site. > > Regards, John > > "Sebastian Bergmann" <[EMAIL PROTECTED]> wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > John Lim wrote: > > > Private members and methods are essential from a security view-point, > > > > Why? They solve social issues between developers. > > > > > and perhaps application variables, but that's about it. > > > > SRM adds Application Variables to the PHP Platform. > > > > -- > > Sebastian Bergmann > > http://sebastian-bergmann.de/ http://phpOpenTracker.de/ > > > > Did I help you? Consider a gift: http://wishlist.sebastian-bergmann.de/ -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, visit: http://www.php.net/unsub.php
