|
|
Posted by Rik on 10/19/06 04:17
affiliateian@gmail.com wrote:
> Chris Hope wrote:
>> Either enable it using .htaccess (if possible) or change all
>> references to eg echo $_GET['f']. The latter is the better option
>> but if your site is full of global references then as a short term
>> solution you'll need to get register_globals enabled.
>
> Thanks Chris, not sute how to enable register_globals but echo
> $_GET['f'] worked! Thanks so much!
Luckily.
Either make sure sure ALL your values are initialiased ($f = '' etc...),
or keep register_globals off (preferably both ofcourse), so your script
won't have to deal with variable values that have been set by a user on the
Evil Net, but only by youself, or a validated/checked request from the
user. That way you're reaonably sure what your sript does, instead of
intorducing unpredictable, and potentially harmfull, variables.
--
Rik Wasmus
[Back to original message]
|