Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:29529 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 92886 invoked by uid 1010); 18 May 2007 23:47:08 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 92871 invoked from network); 18 May 2007 23:47:08 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 18 May 2007 23:47:08 -0000 Authentication-Results: pb1.pair.com smtp.mail=judas.iscariote@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=judas.iscariote@gmail.com; sender-id=pass; domainkeys=bad Received-SPF: pass (pb1.pair.com: domain gmail.com designates 66.249.82.227 as permitted sender) DomainKey-Status: bad X-DomainKeys: Ecelerity dk_validate implementing draft-delany-domainkeys-base-01 X-PHP-List-Original-Sender: judas.iscariote@gmail.com X-Host-Fingerprint: 66.249.82.227 wx-out-0506.google.com Linux 2.4/2.6 Received: from [66.249.82.227] ([66.249.82.227:60926] helo=wx-out-0506.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id F0/F6-00717-BFA3E464 for ; Fri, 18 May 2007 19:47:08 -0400 Received: by wx-out-0506.google.com with SMTP id i31so635405wxd for ; Fri, 18 May 2007 16:47:05 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VzdCM3nqaHIJ64Rd5gRSgPBuUAVC5EauLy67wTqgSsTyW69hG+b877zxz8VqRtQC7kg81UPHCFdtMOQSvm5X03g+Dkz8B0z4IrzmwEQZjPQulXeRi7uo08Pz+prN0KKcA1K+Ou5Ht/gzcSbbCC1q4eIRDJear9oaZKkaJbsHit0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=PbfJAKLRTcFW4tsJd/5mgdWZMuqpmsWEZSjgoZAmri4JNslKAuLQrcx7w0RI+n/JLkBHYItGJALh6Wo5sJSDwU5GoYFlxCIOOQVzc83u6dgVEYaBmKzHdMHk4uKL+FKi6OSd1AUVOJu6UjEhW9cjCwSZqoh9E7TGeQ+6f1gMUDg= Received: by 10.70.23.2 with SMTP id 2mr3274797wxw.1179532025153; Fri, 18 May 2007 16:47:05 -0700 (PDT) Received: by 10.70.95.13 with HTTP; Fri, 18 May 2007 16:47:05 -0700 (PDT) Message-ID: <7d5a202f0705181647r5dae4d46y3d95e320f47a9d34@mail.gmail.com> Date: Fri, 18 May 2007 19:47:05 -0400 To: internals@lists.php.net In-Reply-To: <464DCB8C.90803@chiaraquartet.net> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <464DCB8C.90803@chiaraquartet.net> Subject: Re: [PHP-DEV] potential solution to user streams + allow_url_include=off From: judas.iscariote@gmail.com ("Cristian Rodriguez") 2007/5/18, Greg Beaver : > include $_GET['dumb']; > ?> > What about permanently removing this (mis) "feature" ?? , Im yet to hear any valid reason or example to continue to permit this remote include thingy, all examples I have seen are bogus and broken.. does anyone really think there are valid use cases ? (note that Im talking about include* and require* only ;) )