nlopess Wed Jan 11 13:09:57 2006 UTC
Modified files:
/phpdoc/en/reference/http/functions header.xml
Log:
document PHP 5.1.2 restrictions for multi headers
http://cvs.php.net/viewcvs.cgi/phpdoc/en/reference/http/functions/header.xml?r1=1.29&r2=1.30&diff_format=u
Index: phpdoc/en/reference/http/functions/header.xml
diff -u phpdoc/en/reference/http/functions/header.xml:1.29
phpdoc/en/reference/http/functions/header.xml:1.30
--- phpdoc/en/reference/http/functions/header.xml:1.29 Fri Dec 9 09:21:56 2005
+++ phpdoc/en/reference/http/functions/header.xml Wed Jan 11 13:09:57 2006
@@ -1,5 +1,5 @@
<?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.29 $ -->
+<!-- $Revision: 1.30 $ -->
<!-- splitted from ./en/functions/http.xml, last change in rev 1.2 -->
<refentry id="function.header">
<refnamediv>
@@ -15,11 +15,17 @@
<methodparam
choice="opt"><type>int</type><parameter>http_response_code</parameter></methodparam>
</methodsynopsis>
<para>
- <function>header</function> is used to send raw
- <acronym>HTTP</acronym> headers. See the <ulink
+ <function>header</function> is used to send a raw
+ <acronym>HTTP</acronym> header. See the <ulink
url="&url.rfc;2616">HTTP/1.1 specification</ulink> for more
information on <acronym>HTTP</acronym> headers.
</para>
+ <note>
+ <para>
+ Since PHP 5.1.2 this function prevents more than one header to be sent
+ at once as a protection against header injection attacks.
+ </para>
+ </note>
<para>
The optional <parameter>replace</parameter> parameter indicates
whether the header should replace a previous similar header, or
