Hi Jason!
On Wed, 08 Aug 2001, Jason Greene wrote:
From: Zeev Suraski [EMAIL PROTECTED]
My top of the list is:
$_REQUEST
$_EVIL (Andi and I think it's really pretty good, but we both figured we'll
end up going with a different alternative :)
What about $_TAINTED ?
for
What about $_TAINTED ?
for non-english ppl REQUEST is a more familiar word that TAINTED. I only
encountered it when studying JS security.
+1, tainted? I needed a dictionary for that...
-- teodor
--
PHP Development Mailing List http://www.php.net/
To unsubscribe, e-mail: [EMAIL
- Original Message -
From: Zeev Suraski [EMAIL PROTECTED]
To: Jani Taskinen [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Wednesday, August 08, 2001 1:02 PM
Subject: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs: php4 / NEWS...)
At 21:01 08-08-01, Jani Taskinen wrote
At 20:02 8/8/2001, Zeev Suraski wrote the following:
--
At 21:01 08-08-01, Jani Taskinen wrote:
[moving this to php-dev]
First: Great! Woohoo! Thanks Zeev!
Andi helped with it too :)
I vote for $_EVIL :)
How about $_DONT_TOUCH_THIS
How about $_COULDCONTAINSHELLCODE?
-jason
- Original Message -
From: Jani Taskinen [EMAIL PROTECTED]
To: Zeev Suraski [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Wednesday, August 08, 2001 1:09 PM
Subject: Re: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs: php4 /
NEWS
At 20:14 8/8/2001, Jani Taskinen wrote the following:
--
On Wed, 8 Aug 2001, Cynic wrote:
How about $_DONT_TOUCH_THIS ? :)
Seriously though, I vote for $_REQUEST. After all, it contains
data which is (generally) tied to one particular
: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs: php4 /
NEWS...)
At 20:14 8/8/2001, Jani Taskinen wrote the following:
--
On Wed, 8 Aug 2001, Cynic wrote:
How about $_DONT_TOUCH_THIS ? :)
Seriously though, I vote
At 21:14 08-08-01, Jani Taskinen wrote:
On Wed, 8 Aug 2001, Cynic wrote:
At 20:02 8/8/2001, Zeev Suraski wrote the following:
--
At 21:01 08-08-01, Jani Taskinen wrote:
[moving this to php-dev]
First: Great! Woohoo! Thanks
- Original Message -
From: Cynic [EMAIL PROTECTED]
To: Jani Taskinen [EMAIL PROTECTED]
Cc: Zeev Suraski [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Wednesday, August 08, 2001 1:25 PM
Subject: Re: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs:
php4 / NEWS...)
At 20:14 8/8
- Original Message -
From: Zeev Suraski [EMAIL PROTECTED]
To: Jason Greene [EMAIL PROTECTED]
Cc: Jani Taskinen [EMAIL PROTECTED]; Cynic [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Wednesday, August 08, 2001 1:20 PM
Subject: Re: [PHP-DEV] Re: The new $_GET/POST/ENV (was: Re: [PHP-CVS] cvs
At 20:33 8/8/2001, Jani Taskinen wrote the following:
--
On Wed, 8 Aug 2001, Cynic wrote:
Yeah. And $_SESSION too.
Nope. It doesn't come from the user.
Err, you're right.
[EMAIL PROTECTED]
-
And the eyes of them both
On 08/08/01, Jani Taskinen [EMAIL PROTECTED] wrote:
On Wed, 8 Aug 2001, Cynic wrote:
Yeah. And $_SESSION too.
Nope. It doesn't come from the user.
But it would be useful for $_SESSION to have the same global scope as
these new vars.
--Wez.
--
PHP Development Mailing List
On Wed, Aug 08, 2001 at 09:20:55PM +0300, Zeev Suraski wrote:
My top of the list is:
$_REQUEST
$_REQ would be even nicer - and less to type without hiding
the meaning.
$_EVIL (Andi and I think it's really pretty good, but we both figured we'll
end up going with a different
On Wed, 08 Aug 2001, Thies C. Arntzen wrote:
On Wed, Aug 08, 2001 at 09:20:55PM +0300, Zeev Suraski wrote:
My top of the list is:
$_REQUEST
$_REQ would be even nicer - and less to type without hiding
the meaning.
The Perl meter is registering non-zero reading here.
evil
At 22:13 08-08-01, Thies C. Arntzen wrote:
On Wed, Aug 08, 2001 at 09:20:55PM +0300, Zeev Suraski wrote:
My top of the list is:
$_REQUEST
$_REQ would be even nicer - and less to type without hiding
the meaning.
I agree with Andrei on this one...
$_EVIL (Andi and I think it's
15 matches
Mail list logo
