Re: PHP and "Register_Globals"

You should put the following code in your scripts:

But so this only for variables which may be a user input!

Then your program is "register_globals off"-compatible and safe.

> newer php-versions have set "register_globals" to "off" by default. i
type=text name=age>> if use $age in my scripts.

> I soon realized the security issues, and wrote my own

> my question is now: my app is 'safe', but what do I do if my future

> would it be possible to write a script that registers the whole

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

> any ideas welcome :)

> regards,

> Ulrich

-- 
Adrian
mailto:adrian@planetcoding.net
mailto:thiefmaster@woltlab.de
www: 
http://www.planetcoding.net
www: 
http://webskyline.planetcoding.net