Comments on: Insecure Php coding http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/ From Pentesters To Pentesters Sat, 11 Oct 2008 22:24:01 +0000 http://wordpress.org/?v=2.6.2 By: Andrew Fenn http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-1847 Andrew Fenn Mon, 23 Jul 2007 07:24:44 +0000 http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-1847 I have to disagree with Kestas if you forget the "else" then it is your own fault yes, but it is very interesting that code doesn't error and I believe that is a PHP bug. It would be a major pain not to spot this in a script and keep wondering why your script is messing up only to find its a missing else. I have to disagree with Kestas if you forget the “else” then it is your own fault yes, but it is very interesting that code doesn’t error and I believe that is a PHP bug.

It would be a major pain not to spot this in a script and keep wondering why your script is messing up only to find its a missing else.

]]> By: Kestas http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-38 Kestas Sat, 07 Apr 2007 15:27:03 +0000 http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-38 I don't really think that this is a very big issue, bad coding and bad php knowledge, nothing special about this, it is logical to use else, but anyway the thing to use die(); or exit(); after the redirect is indeed good way of coding, the php manual even has written about it in examples. I don’t really think that this is a very big issue, bad coding and bad php knowledge, nothing special about this, it is logical to use else, but anyway the thing to use die(); or exit(); after the redirect is indeed good way of coding, the php manual even has written about it in examples.

]]> By: Tejaswy http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-14 Tejaswy Tue, 27 Mar 2007 09:58:29 +0000 http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-14 Hi, Just checking out your blog. Hi,
Just checking out your blog.

]]> By: Yns http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-13 Yns Sat, 24 Mar 2007 14:26:33 +0000 http://www.notsosecure.com/folder2/2007/03/20/insecure-php-coding/#comment-13 Another post for this topic: http://yaisb.blogspot.com/2006/08/authentication-bypass_07.html Thanks for information. Another post for this topic:
http://yaisb.blogspot.com/2006/08/authentication-bypass_07.html

Thanks for information.

]]>