Welcome to Geeklog, Anonymous Friday, April 19 2024 @ 02:45 pm EDT

Geeklog Forums

Forum Index
Popular Topics

security issue ?

New Topic Post Reply

10/08/03 02:14am (Read 2,319 times)

Status: offline

jolla

Forum User

Newbie

Registered: 09/24/03

Posts: 1

I noticed the following in geeklog; ... if ($reply == $LANG01[25]) { ... Is this a smart way to do it ? You're assuming the client/browser is 'honest'...

14 15 Quote

10/09/03 03:55pm

Status: offline

Dirk

Site Admin

Admin

Registered: 01/12/02

Posts: 13073

Location:Stuttgart, Germany

No, that is not a security issue. The first thing any Geeklog file (in public_html) does is to include lib-common.php, which in turn includes the language file, thus overwriting whatever you may have injected from the URL or in a POST request. bye, Dirk

12 36 Quote

New Topic Post Reply

All times are EDT. The time is now 02:45 pm.

Normal Topic
Sticky Topic
Locked Topic

New Post
Sticky Topic W/ New Post
Locked Topic W/ New Post

View Anonymous Posts
Able to post
Filtered HTML Allowed
Censored Content

Geeklog Forums

security issue ?

jolla

Dirk

Search

Resources

About

Getting started

Support

Development

Topics

User Functions

What's New

Articles last 4 weeks

Comments last 4 weeks

Pages last 4 weeks

Links last 4 weeks

Downloads last 4 weeks