If this was a geniune script (which I hope it isnt) and was webaccessable with register globals on ... I could just do page.php?command=rm+-Rf+/ and do some serious damage. Just worth noting.
> HI > I wrote a basic script that takes the input of a textfield and passes > it onto the system() function and then echo's the result, > somethinglike this: > > <?php > $result = system($command); > echo $result; > ?> > > The $command is sent from the previous page via text field. > > Whe I test this and do something like " ping 192.168.0.2", the page > keeps on growing and growing, way past 30seconds. My php.ini file is > definately set to 30s timeout. Is there something wrong or do I have a > misunderstanding of the timeout workings? > > Thanks > ' > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php -- Dan Hardiker [[EMAIL PROTECTED]] ADAM Software & Systems Engineer -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
