[Pmwiki-users] Safer .php-files

Patrick R. Michaud pmichaud
Fri Feb 27 13:30:49 CST 2004


On Thu, Feb 26, 2004 at 06:19:06PM +0100, Thomas -Balu- Walter wrote:
> Perhaps one could also configure PHP to not put $_POST into $_REQUEST in
> a future version or it will be broken somehow in a version.
> Of course everything is theoretical, but the variable handling in PHP
> changed so often[1] by now that I'd expect everything. 
> [1] register_globals, superglobals, my worst enemy: magic_quotes_gpc[2], ...

Indeed, magic_quotes_gpc is Evil, so I had to write a special
"stripmagic" function in PmWiki to undo its evil magic if it was applied.  :-)

Pm



More information about the pmwiki-users mailing list