I know that having register_global s=ON is a security risk and we have it OFF.
We want to use the GeekLog content manager and it only works with ON.
Can someone give us some coding tips on how to mitigate any possible security
problems if we turn it on? I know it has to do with a querystring that is
same as a variable name being sent in the URL. How can we prevent that and
still leave globals ON? Anyone have some simple magic?
Thanks,
Al