[Pmwiki-users] Re: Safer .php-files
Christian Ridderström
chr
Fri Feb 27 05:36:45 CST 2004
On Thu, 26 Feb 2004, Patrick R. Michaud wrote:
> I'll be adding the "if (!defined(...)) exit;" clauses to PmWiki's scripts
> in a future release.
Could someone comment on the risk of showing the contents of the php file?
I.e., why do an exit() instead of showing the file?
/Christian
PS. For the files in scripts/ this isn't very important, but in order
to document/let other see your configuration files, it's convenient to
be able to show them somehow.
--
Christian Ridderstr?m http://www.md.kth.se/~chr
More information about the pmwiki-users
mailing list