The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
PHP security rumor by UGuardian 2007-01-22 09:54:12
I've been hearing lately that you should put all of your important code (ie, anything that uses a database or needs to be secure) in a class rather than a function or global scope (ie, outside of functions and classes).

This is supposedly because the variables used by a class can't be set by GET or POST directly*, and this moves everything away from direct contact with the user (who is never to be trusted anyway).

Are classes really better security?

I've just been using them 'cause they are easier to work with. Now I'm curious.



* Excluding calls like MyClass.DoSomething($_GET['something']);
[ Reply ]
  Not quite that I think. by Pic2007-01-22 09:56:54
  Rumor about the existence of PHP security - by oldphart2007-01-22 12:04:43
  If you're worried about register_globals by Hoth2007-01-22 13:00:12

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)