Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:95079 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 26200 invoked from network); 12 Aug 2016 10:02:19 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 12 Aug 2016 10:02:19 -0000 Authentication-Results: pb1.pair.com smtp.mail=peter.e.lind@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=peter.e.lind@gmail.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 74.125.82.45 as permitted sender) X-PHP-List-Original-Sender: peter.e.lind@gmail.com X-Host-Fingerprint: 74.125.82.45 mail-wm0-f45.google.com Received: from [74.125.82.45] ([74.125.82.45:37131] helo=mail-wm0-f45.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 48/BB-56950-AAE9DA75 for ; Fri, 12 Aug 2016 06:02:19 -0400 Received: by mail-wm0-f45.google.com with SMTP id i5so22517357wmg.0 for ; Fri, 12 Aug 2016 03:02:18 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=N+8X3l/aXgqq5HpaIDimiQWuWfCLg7+S3TLnpZn+8K0=; b=DuM+hTKhO4DieLVaVfF9EpYYenJsyeeyF2fyO+Y+mHG5g65mMwlzoZ55BCY/a82zs8 PEDS6dQpAI6Ach2W/4HPURbHq0TqIJUnB0Kg446vBMidWu4nfcnV11Dylx9b/rDOUXA3 5IKKiWUm7893/tWuiEsj/KdFtPXYq0W5YampCz7fJc/ahw8LFxa5id0NGVmt/hAut+wT 054jIP5bUO2M3s1ACQ6P7ZCRZO6EGgZoG6Lw28NW2bEpqDwUllrYaKMB1TPPAOshG5Jw sWN0v/McLPaQUduXSRQzflUVmwxecINlk23vwaUyKeb9WczIoYkMPkKLkN3RpPozcSih L7cA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=N+8X3l/aXgqq5HpaIDimiQWuWfCLg7+S3TLnpZn+8K0=; b=M9uA4AUm09eQte0S99cHGLO9pU6fW610mBE6FWFpQhIjOIz404LoIxYaEg0B7DCDCN QjCavRIobCnX1VOnRWyTaqeE+zhNljEJ3/XrpVpoSC/Y6qpwgWQ8joN1mrh6w98ec0Lt a5DJ5bFuo+6K+kuKm285gIPHq15NBIA0NFeghwARosfuoSJLRK4zDp0aw+mXQb4k6jGV mOxfVe1ENTfIVGAp2kAHk6HolUerg6iC5AHz5j3vGVQ3w4YYzCuIWW4KXPQ4oce9PBft IYATuMEBqOL2N8rXR5dUPnU0QumMDWPK8R42hv181FvjenOmiXf59P8OFsowCDXI8whS yJzQ== X-Gm-Message-State: AEkoouuJ3DUe6Og4wyUal3jp2WVnXQcd84C8drD7DVpOYP+yGWvmqY9XDW3OSlUjBUBk9LecpVrVM3YNNuebRA== X-Received: by 10.195.2.42 with SMTP id bl10mr13346399wjd.21.1470996135645; Fri, 12 Aug 2016 03:02:15 -0700 (PDT) MIME-Version: 1.0 Received: by 10.194.123.163 with HTTP; Fri, 12 Aug 2016 03:01:55 -0700 (PDT) In-Reply-To: <7b2581b5-c75d-cc72-745f-a58cded6dfd9@gmail.com> References: <10fbcb03-5de8-4d9a-da1c-7e2bf77937cb@lsces.co.uk> <9f76a201-7423-51d3-96df-d14a1f38b843@gmail.com> <7b2581b5-c75d-cc72-745f-a58cded6dfd9@gmail.com> Date: Fri, 12 Aug 2016 12:01:55 +0200 Message-ID: To: Rowan Collins Cc: PHP internals Content-Type: multipart/alternative; boundary=001a113640c62196940539dcfabe Subject: Re: [PHP-DEV] Simple variable handling. From: peter.e.lind@gmail.com (Peter Lind) --001a113640c62196940539dcfabe Content-Type: text/plain; charset=UTF-8 On 12 August 2016 at 11:54, Rowan Collins wrote: > On 12/08/2016 10:21, Lester Caine wrote: > >> Many of my systems run on secure intra-nets and much of the 'safety >> concerns' that have been brought up recently as 'essential' simply don't >> apply. >> > > There's always rogue employees / students / visitors with temporary > access... But yes, IF you trust your users 100% to be non-malicious, > non-curious, and uninfected, THEN you can trust your user input. :) > > You forgot non-clumsy. Typos also happen and can have problematic results. You cannot trust user input. End of discussion. -- CV: careers.stackoverflow.com/peterlind LinkedIn: plind Twitter: kafe15 --001a113640c62196940539dcfabe--