Re: newbie question regarding URL parameters

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



# buddhamagnet@xxxxxxxxx / 2007-01-09 17:36:55 +0000:
> Wow, there are some really bitchy, unattractive people here. No wonder some
> people bail out of IT. Don't confuse knowledge for wisdom.

I don't see anything bitchy in the whole email. Don't confuse terseness
with bitching.

Oh, and also don't top-post, thanks.
 
> On 1/9/07, tedd <tedd@xxxxxxxxxxxx> wrote:
> >
> >At 9:17 PM -0500 1/5/07, <tg-php@xxxxxxxxxxxxxxxxxxxxxx> wrote:
> >>You'll probably get 50 answers to this, but here's probably what
> >happened.
> >>
> >>There's a setting called "register globals" that will turn your
> >>name=me and age=27 into $name = "me" and $age = "27".  It used to be
> >>turned ON by default.  This was generally considered to be bad
> >>security, so it now defaults to OFF.
> >>
> >>To get these variables, just use the $_GET system variable.
> >>
> >>$name = $_GET['name'];
> >>$age = $_GET['age'];
> >>
> >>Easy!
> >>
> >>Best of luck!
> >>
> >>-TG
> >
> >Just to add to -TG advice, you should also clean those inputs. IWO,
> >make sure the values fall within what you expect. Basic security.

-- 
How many Vietnam vets does it take to screw in a light bulb?
You don't know, man.  You don't KNOW.
Cause you weren't THERE.             http://bash.org/?255991

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php


[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux