[nycphp-talk] Repost Post Vars
Analysis & Solutions
danielc at analysisandsolutions.com
Fri Sep 19 10:04:17 EDT 2003
Hey Jeff:
On Wed, Sep 17, 2003 at 05:57:58PM -0400, Jeff wrote:
> Good question. Anyone know about the security implications?
>
> -----Original Message-----
> From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org]
> On Behalf Of crisscott at netzero.com
>
> $_SESSION['post_vars'] = $_POST;
> header(blah...);
> And then when you get to the second page you could put them back:
> $_POST = $_SESSION['post_vars'];
>
> I have no idea what the implications of this are.
>
> Scott Mattocks
I'd imagine the security risks involved are roughly equivalent to
accepting post headers in the first place. Only hitch is you've got to
make sure you're dealing with the same person, which shouldn't be too
hard.
--Dan
--
FREE scripts that make web and database programming easier
http://www.analysisandsolutions.com/software/
T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y
4015 7th Ave #4AJ, Brooklyn NY v: 718-854-0335 f: 718-854-0409
More information about the talk
mailing list