Programming Forums - View Single Post

Ooble · Apr 24th, 2005, 5:14 PM

It greatly enhances the security of your system. For example, if you have a variable called $authorised, someone could override it by placing ?authorised=1 into the address bar, therefore creating both $_GET['authorised'] and $authorised, and setting them both to 1. If you turn register_globals off, only the first is created. You can do this by opening php.ini, finding it and setting it to Off, and restarting your webserver.

Apr 24th, 2005, 5:14 PM	#2
Ooble I eat cake for breakfast. Join Date: Jul 2004 Location: In my box. Posts: 4,434 Rep Power: 9	It greatly enhances the security of your system. For example, if you have a variable called $authorised, someone could override it by placing ?authorised=1 into the address bar, therefore creating both $_GET['authorised'] and $authorised, and setting them both to 1. If you turn register_globals off, only the first is created. You can do this by opening php.ini, finding it and setting it to Off, and restarting your webserver. __________________ Me :: You :: Them