Thread: Tip of the Day - PHP Security
View Single Post
Old 08-23-2006, 12:32 PM  
calmlikeabomb
Confirmed User
 
calmlikeabomb's Avatar
 
Join Date: May 2004
Location: SW Palm Bay, Florida
Posts: 1,323
Quote:
Originally Posted by k0nr4d
Can't you do like
php_flag magic_quotes_gpc on
in htaccess?
http://us3.php.net/magic_quotes
Quote:
Originally Posted by Php.net
Magic Quotes is a process that automagically escapes incoming data to the PHP script. It's preferred to code with magic quotes off and to instead escape the data at runtime, as needed.
Here's another interesting comment from that page:
Quote:
Originally Posted by judas dot iscariote at gmail dot com

Just for the record. this feature has been removed as of PHP6.
now PHP works always like if magic_quotes_gpc Off.

get_magic_quotes_gpc, get_magic_quotes_runtime are kept but always return false, set_magic_quotes_runtime raises an E_CORE_ERROR.

this is great news, magic_quotes were a big annoyance.
__________________
subarus.
calmlikeabomb is offline   Share thread on Digg Share thread on Twitter Share thread on Reddit Share thread on Facebook Reply With Quote