Hello Daniel, > It may be off-topic for the initial post, but I disagree > wholeheartedly with the above statement, Stefan. There are > innumerable reasons where $_REQUEST would be much more economic than > writing out all conditions for $_POST, $_GET, $_SESSION, $_COOKIE.... > it doesn't matter if you disagree with my statement, because that is just another personal opinion. It is a known fact that using $_REQUEST usually introduces security holes in applications. There is always $_COOKIE merged into it, which overwrites $_GET and $_POST. That means I just need to infect your browser with a cookie and have delayed cross site forgeries all over the place...
Stefan Esser -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
