Hey Rich, > > // Add to the running totals > > @$hits["$username|$subnet"]++; > > @$bytes["$username|$subnet"]+=$byte; > > @$baps["$username|$subnet|$this_second"]++; > > @$bapm["$username|$subnet|$this_minute"]++; > > @ is suppressing the E_NOTICE error message that the > variables are not > pre-set.
Yep, I got that. > This is BAD if register_globals is ON as it means > that somebody would > use: > http://example.com/example.php?hits[user|192.168]=10000 > to forge the hit counters I know, but he's done some funky programming above that so it cant happen, basically; anybody accessing the script via get/post etc (the web) would get the welcome page, but if the script is run as a shell script then and only then is access granted to the above part (after meeting other conditions...) > Homework: > http://www.php.net/manual/language.operators.errorcontrol.php Yes sir.... :-) Thanks! Ryan ------ - The faulty interface lies between the chair and the keyboard. - Creativity is great, but plagiarism is faster! - Smile, everyone loves a moron. :-) ----- Fight back spam! Download the Blue Frog. http://www.bluesecurity.com/register/s?user=bXVzaWNndTc%3D __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
