Tuesday, June 27
SESSION is an associative array (aka Dictionary). When the session times out, things like 'Tempfile' are no longer defined. (PHP has an unset() function that undefines a reference.) But when PHP sees an undeclared reference, it doesn't error out -- instead it substitutes '' (a blank string) if the reference occurs within a string. So now the user is executingYeah.
rm -r /var/public_www/
As you might imagine, this behavior makes PHP very dangerous in the hands of an idiot.
Posted by: Chris C. at Tuesday, June 27 2006 11:23 AM (V5vg4)
'rm' is remove directory? But what's the '-r' parameter do?
Crud, don't tell me that's root? No, wait, www_root is the site root.... recursive maybe? But what's var?
Pardon me while I advertise my ignorance....
Posted by: ubu roi at Tuesday, June 27 2006 09:35 PM (s/dU4)
/var is a particular filesystem that the document root really shouldn't be in.
What this little beauty did was whenever a user's session timed out, it deleted the entire web site.
Not, on the whole, a good thing.
Posted by: Pixy Misa at Tuesday, June 27 2006 10:15 PM (FRalS)
Posted by: Wonderduck at Tuesday, June 27 2006 11:39 PM (+FLIL)
Posted by: ubu roi at Wednesday, June 28 2006 12:05 AM (s/dU4)
52 queries taking 0.1464 seconds, 281 records returned.
Powered by Minx 1.1.6c-pink.