|
Posted by PhilM on 08/14/05 15:34
"ZeldorBlat" <zeldorblat@gmail.com> wrote in message
news:1123992688.505008.109940@g43g2000cwa.googlegroups.com...
> It's perfectly safe. Register globals isn't dangerous in and of itself
> -- it's the misuse of it that is unsafe. In this case, you've
> guaranteed that the variable called $QUERY_STRING is in fact the same
> as $_SERVER['QUERY_STRING'] so you're ok.
>
> With register globals on, the danger is that someone could potentially
> set the value of $QUERY_STRING through a GET, POST, or cookie variable
> and you would never know the difference.
>
Thx for that...
I thought that may be the case, but wasn't real certain.
Angst now somewhat nullified :)
Navigation:
[Reply to this message]
|