Re: [PHP] /etc/passwd

Thu, 10 Jul 2003 04:54:44 -0700

At 13:45 10-7-03, Marek wrote:
Add a check for php files, or any other files you don't want anybody to include:
if(ereg('php[0-9]$', $id))
goaway;
but what about '?' and '#' additions?

$id="however_they_would_find_out/your_path/file.php?extra=x#loc";
  ?

so maybe

if(ereg('\.php', $id)) ?



--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to