Register or have you forgotten your password?
Get the most out of Surmunity, read our tips here! Need an interesting blog to read? You've got to read the Surpass Blog!
| Welcome! Please register to access all of our features.
| PHP, MySQL General PHP questions. Or go to our PHPsuexec Forum >> |
 |
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread |
April 2nd, 2008, 11:33 AM
|
#1 (permalink) | |
|
Surpassing Dutch
Super #1
Joined in Sep 2004
Hosted on SH98
2,548 posts
Gave thanks: 188
Thanked 45 times
|
Pixelpost
Just did a new install of Pixelpost and noticed the following:
Quote:
__________________
sh98
|
|
|
    
|
|
April 2nd, 2008, 4:26 PM
|
#2 (permalink) |
|
URB4N 5K1LLZ
Super #1
Joined in Sep 2005
Lives in Orlando, FL
Hosted on SH63
2,660 posts
Gave thanks: 81
Thanked 128 times
|
"When register_globals is enabled it opens the door to several exploits that can be carried out through injection methods which can easily render your data compromised."
http://www.surmunity.com/search-me/2...r-globals.html |
|
|
|
Leave it off 
|
April 4th, 2008, 11:50 AM
|
#4 (permalink) |
|
Senior Member
Super #1
Joined in Nov 2003
Lives in New Hampshire
1,260 posts
Gave thanks: 3
Thanked 27 times
|
The only fear of register globals is if the script was written by a poor programmer. Technically, the only danger is if people don't initialize their variables correctly.
__________________
  
|
|
|
|
|
April 4th, 2008, 1:39 PM
|
#5 (permalink) |
|
Marketing Maven
Surpass Staff
Joined in May 2003
Lives in Orlando
24,749 posts
Gave thanks: 946
Thanked 806 times
|
Some applications seem to warn users by giving extra advice, even if it's not relevant to the program at the time.
Or they are just covering their bottoms if their program is exploited in the future. "Well in the readme, we did warn you guyzzzz...."
__________________
|
|
|
|
