Hello Michael, Friday, May 21, 2004, 6:36:08 AM, you wrote: >Thanks for the explanation. I will be using MsSQL/PHP on an Intranet, >so my security risks are minimal. No problem.. However it isn't so much that it's a security risk (well, it is), but that REGISTER_GLOBALS will be depreciated in later versions of PHP. If you write code that relies on REGISTER_GLOBALS being set to on, not only is your code going to be much less portable (i.e. you decide to release it on the internet for others to use), but when you upgrade your PHP server software sometime in the future, your code may not run at all because REGISTER_GLOBALS won't be an option anymore.
The difference between writing $myvar and $POST_['myvar'] isn't that much harder. -- Cheers, Leif Gregory TB Lists Moderator (and fellow registered end-user) PCWize Editor / ICQ 216395 / PGP Key ID 0x7CD4926F Web Site <http://www.PCWize.com> ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
