Menu
▾
▴
RE: [binarycloud-dev] external variables
|
From: Andreas A. <a.a...@th...> - 2001-05-14 10:56:17
|
Hi Alex, > The most secure wat to get input from the outside world is referencing: > $HTTP_POST_VARS[var], $HTTP_GET_VARS[foo], etc Well this is the way I do all my projects. It's the most secure but also more effort. I check the $HTTP_*_VARS arrays and reference the variables to internal globals if required. More work, but possibly highest security. > So, I thought it might be a good idea to make all "external" variable access > pass through this single point, and in doing so, I could: Performing a type check or something (isEmail, isNumber, etc.) and on success return the reference. > I sort of liked that, it's a little inconvenient, but it's much more secure. I'm with you. > thoughts? Totally agree with you. But for people that don't like this, maybe the the trailing_ thing is an alternative. $myOutside_ (?myOutside.=value) Andi |
