See www.eshox.com -----Original Message----- From: John Nichel [mailto:[EMAIL PROTECTED] Sent: Monday, August 02, 2004 1:16 PM To: [EMAIL PROTECTED] Subject: Re: [PHP] Re: php inventory control software
John W. Holmes wrote: > From: "John Nichel" <[EMAIL PROTECTED]> > >>Steve Douville wrote: >> >>>Take a look at www.oscommerce.com >> >>Does oscommerce still require register_globals to be on? >> >>http://php.resourceindex.com/Complete_Scripts/Shopping_Carts/ > > > Even if it does, you can't instantly equate that as being a Bad Thing. I'm > sure you know this, but for other's sake, you can program securely even if > you have register_globals ON... you just have to know what you're doing and > use good programming practices. > > The register_globals setting doesn't matter... it's whether you choose to > accept the programmers code as being secure enough for your needs or not. > > ;) > > ---John Holmes... > True, but my issue with it when we were evaluating it was that I didn't know (still don't) how secure their code was/is...and with my boss, wasn't given the time to give it a good looking over (does anyone have a boss who will allow the proper time, for anything? :( ). Not to mention that we have a few other php developers here who are learning as they go, and it wouldn't have been a good idea for us to turn on globals if they (or I) make a mistake. We ended up going with X-Cart...still not to happy about that one though. -- John C. Nichel ÜberGeek KegWorks.com 716.856.9675 [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php