From: Reini U. <ru...@x-...> - 2004-11-17 17:49:16
|
Scott Taylor schrieb: > Charles Corrigan said: > >>Scott Taylor wrote: >> >>>Reini Urban said: >>> >>>>register_globals on >>> >>>What does this mean? I don't see any variables or anything >>>close to that name anywhere in the phpwiki-1.2.4 directory >>>and as I said earlier, I don't grok PHP, much. >> >>Google is your friend... Please hunt out the detail for yourself now you >>have been pointed in the general direction. IMO, Reini has a lot of other >>things that he considers critical to do right now. > > > Good point. > > K, I turn register_globals on in the /etc/php.ini file, and restarted Apache. > > A lot of stuff I've been reading, this morning, about this > register_globals setting says it is not a secure way to write PHP pages. > Is that true for this project? Yes. Entirely insecure and very easy to abuse. Just a simple small wiki. We don't do any development anymore on the 1.2.x branch. -- Reini Urban http://xarch.tu-graz.ac.at/home/rurban/ |