Re: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs: php4 / NEWS...)

[Jason Greene]

----- Original Message ----- 
From: "Zeev Suraski" <[EMAIL PROTECTED]>
To: "Jason Greene" <[EMAIL PROTECTED]>
Cc: "Jani Taskinen" <[EMAIL PROTECTED]>; "Cynic" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Wednesday, August 08, 2001 1:20 PM
Subject: Re: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs: php4 / 
NEWS...)


> My top of the list is:
> 
> $_REQUEST
> $_EVIL (Andi and I think it's really pretty good, but we both figured we'll 
> end up going with a different alternative :)

What about $_TAINTED ?

-Jason

> 
> Zeev
> 
> At 21:12 08-08-01, Jason Greene wrote:
> >What about using the acronyms in any combination.....
> >
> >like $_GPC
> >and $_GC
> >and etc....
> >
> >-Jason
> >----- Original Message -----
> >From: "Cynic" <[EMAIL PROTECTED]>
> >To: "Jani Taskinen" <[EMAIL PROTECTED]>
> >Cc: "Zeev Suraski" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
> >Sent: Wednesday, August 08, 2001 1:25 PM
> >Subject: Re: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs: 
> >php4 / NEWS...)
> >
> >
> > > At 20:14 8/8/2001, Jani Taskinen wrote the following:
> > > --------------------------------------------------------------
> > > >On Wed, 8 Aug 2001, Cynic wrote:
> > > >
> > > >>How about $_DONT_TOUCH_THIS ? :)
> > > >>Seriously though, I vote for $_REQUEST. After all, it contains
> > > >>data which is (generally) tied to one particular request...
> > > >
> > > >This reminds me that should the $_FILES be included in this
> > > >data too? As it's also something you shouldn't trust and
> > > >it's also coming from the user.
> > > >
> > > >--Jani
> > >
> > > Yeah. And $_SESSION too.
> > >
> > >
> > >
> > > [EMAIL PROTECTED]
> > > -------------
> > > And the eyes of them both were opened and they saw that their files
> > > were world readable and writable, so they chmoded 600 their files.
> > >     - Book of Installation chapt 3 sec 7
> > >
> > >
> > > --
> > > PHP Development Mailing List <http://www.php.net/>
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> > > To contact the list administrators, e-mail: [EMAIL PROTECTED]
> > >
> 
> --
> Zeev Suraski <[EMAIL PROTECTED]>
> CTO &  co-founder, Zend Technologies Ltd. http://www.zend.com/
> 
> 
> -- 
> PHP Development Mailing List <http://www.php.net/>
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> To contact the list administrators, e-mail: [EMAIL PROTECTED]
> 
> 


-- 
PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]