Originally Posted by othellotech
IMHO its required to be on to accomodate for lazy code.
Its is sad when commercial applications cant be securely coded and work with globals off.
That is correct ..... it is for us lazy people
I got totally caught off guard when a host I was using upgraded PHP and turned the globals off. Nothing would work and I had to go in and re-write all the code to conform. I learned my lesson though.
This is not to say that its' bad software, they just need to update it for the security changes in PHP. I would think that they would be working on that. If I were going to purchase it, I definately would write to them and tell them my concerns.
Now I hear the next version is not going to allow short tags .... for those that know php, <?
as opposed to <?php
All my code now already has <?php
just in case