[development] Remove PHP filter by default
John Handelaar
john at userfrenzy.com
Sun Jan 29 09:37:05 UTC 2006
Karoly Negyesi wrote:
> On Sun, 29 Jan 2006 10:15:38 +0100, John Handelaar
> <john at userfrenzy.com> wrote:
>
>> Karoly Negyesi wrote:
>>
>>> Also, defining a block is more difficult than just using a snippet.
>>> Is it? No.
>>
>> Yes.
>>
>> Unless there's a TTW way to add modules.
>
> Well, not through the web, but the point here is that I would like to
> tighten security and not allow PHP entered in the browser.
I know. But making out that it's not harder is what I'm calling
you out for :)
> If you want
> to enter PHP code, you save the snippet into an inc and upload it. For
> a page, you do not need to even enable anything. That's the closest I
> can get to TTW.
I was going to ask how you execute a .inc without a PHP filter, but
then realised you're planning some sort of user-defined include dir.
jh
More information about the development
mailing list