Re: [PHP-DEV] Disable magic quote by default.

Lars Torben Wilson wrote: > On Sat, 2002-02-16 at 18:01, Yasuo Ohgaki wrote: *SNIP* > The WTF factor for that would be off the scale. Think about how many > bug reports about addslashes() not working we'd have to bogusify. > > -1 I agree. That's why I thought it may be better to wait until PHP5

Re: [PHP-DEV] Disable magic quote by default.

On Sat, 2002-02-16 at 18:01, Yasuo Ohgaki wrote: > Yasuo Ohgaki wrote: > > Stefan Esser wrote: > > > >> magic_quotes_by_default is a nice way to make scripts (written by > >> novices) > >> safer. Unfourtunately mqbd forces you to write unsecure scripts. If > >> you put > >> such > >> scripts on

Re: [PHP-DEV] Disable magic quote by default.

Yasuo Ohgaki wrote: > Stefan Esser wrote: > >> magic_quotes_by_default is a nice way to make scripts (written by >> novices) >> safer. Unfourtunately mqbd forces you to write unsecure scripts. If >> you put >> such >> scripts onto a server that doesnt have mqbd they are insecure. > > > This i

Re: [PHP-DEV] Disable magic quote by default.

Stefan Esser wrote: > magic_quotes_by_default is a nice way to make scripts (written by novices) > safer. Unfourtunately mqbd forces you to write unsecure scripts. If you put > such > scripts onto a server that doesnt have mqbd they are insecure. This is true. I bet many novice writes insecure sc

Re: [PHP-DEV] Disable magic quote by default.

magic_quotes_by_default is a nice way to make scripts (written by novices) safer. Unfourtunately mqbd forces you to write unsecure scripts. If you put such scripts onto a server that doesnt have mqbd they are insecure. >From my point of view enabling mq by default was a very very bad idea, cause

[PHP-DEV] Disable magic quote by default.

I asked in a bug report thread, but I ask again. Any objection for disabling magic quote by default? (I mean change default values in main.c and php.ini-dist) -- Yasuo Ohgaki -- PHP Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php