HTML5 Icon HTML5 Icon HTML5 Icon
TP on Social Media


Welcome to TinyPortal. Please login or sign up.

September 22, 2023, 08:49:41 AM

Login with username, password and session length
  • Total Posts: 194,531
  • Total Topics: 21,180
  • Online today: 83
  • Online ever: 3,540
  • (September 03, 2022, 01:38:54 AM)
Users Online
Users: 0
Guests: 82
Total: 82

Host configuration question

Started by g6cad, July 31, 2006, 01:47:56 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.


My host have upgraded the server im using and they have put in some new software and now im wonder about one thing on the new domain settings page i have.
In one place I can set diffrent ways for the server to read PhP, and im lost in one choise i can make there.


Register globals On Off

"Register Globals" in PHP is "Off" by default. This is for security reasons. Before turning it "On" you should read this documentation, which explains the security risk and consequence concerning this setting.
This is the documentation they point to

Register Globals ON or OFF  ???    What should i set that to? I have read the documentation they have but it soesent really point in any direction for what is the best for what you are using on your webpage.

What should i set that to? On or OFF  :o


That is not required for any of your stuff to work G6. I have it turned off on my server. Its only a security risk if someone doesn't write good code. :)


yea i saw it in my coppermine installation too -- or was it another told me my global thingies were off and it is recommended they should be on because a bad / weak code could cause a security vunrability

needless to say i didnt turn it on and everything still runs fine


If you can live with it off, I would recommend that.


Its a good thing u brought this queston up...cos ive always wondered what that setting was


It is set to off :) But why do they have sutch things if it is "dangerous" to have them set to on  :o


Its only dangersous if the person who writes the scripts doesn't know how to code properly. If the person can code properly there's no danger. Unfortunately, not everyone is a A+ programmer when they start. :)

From what I see, its only dangerous in the sense that if you don't declare a variable (with global on) that it makes it easier for people to inject information into a variable that is not declared, thus making it easier to hack someones site or something.


I couldn't tell you anything about the dangerous part, but i do know that it caused an issue being of on someone's server that I was attempting install oscommerce for...once turned on it worked perfectly.


If they use registered globals then yes, it will have to be turned on. I've ran into that before too. I can't remember which script required it. Its really a personal preference I guess. But I tend to think the more you have open, the less secure your site is. I try to keep things like that at a minimum if at all possible.


reminds me of my lst host...they had an over sized red button which said "Delete this account"

lool anyways i did get to press it once :D thats when i was leaving them