On Wednesday 04 July 2001 16:12, ReDucTor wrote:
> http://sourceforge.net/source.php?page_url=/source.php look at that...
No problem. Have a look at what is done before the show_source () call.
That script *is* safe :)
> > It is not how secure PHP is, it is how well YOU protect it.
> > For example = make this line show_source($file); then go to your page
> > like file.php?file=/etc/passwd and you're freaked!
--
Christian Reiniger
LGDC Webmaster (http://lgdc.sunsite.dk/)
Pretty cool, the kind of power information technology puts in our hands
these days.
- Securityfocus on probing 36000000 hosts for known problems in 3 weeks
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
