2 thoughts on “Just Say no to registered Globals”

  1. just curious though… i have a site that depends on passiing variables through the url, such as http://www.mysite.com?id1.
    just as your site does: blog.joshuaeichorn.com/index.php?p=12. however, i do “protect” my precious variables (sessions,
    forms, etc…) by using $_SESSION[“variable”] and $_POST[“variable”] and $_GET[“variable”]. using those, i should be ok…

  2. Your correct, as long as your using _SESSION,_POST and the like your good, just make sure to keep registered globals turned off or they can be used to overwrite other php global variables.

Comments are closed.