IntegraMOD

Re: General question about phpBB_Security

2006-07-01T05:54:11-07:00

"Dragonsys";p="10565" wrote:
as far as I am aware, and form what I can tell looking at my site, anything which calls page_header falls under the Security.

cool.. so then I don't have to worry about injects on my input forms

thats awesome!!

Statistics: Posted Author: computerskillz — Sat Jul 01, 2006 5:54 am

Re: General question about phpBB_Security

2006-06-30T05:40:10-07:00

as far as I am aware, and form what I can tell looking at my site, anything which calls page_header falls under the Security.

Statistics: Posted Author: Dragonsys — Fri Jun 30, 2006 5:40 am

General question about phpBB_Security

2006-07-01T05:55:49-07:00

Does it secure custom forms and pages not included with the package but which are integrated and fall under the includes/page_header.php ?

In other words, I've created some custom pages and integrated them in the usual way using

--------------------------------
define('IN_PHPBB', true);
$phpbb_root_path = './';
include($phpbb_root_path . 'extension.inc');
include($phpbb_root_path . 'common.'.$phpEx);
include($phpbb_root_path . 'includes/bbcode.'.$phpEx);
include($phpbb_root_path . 'includes/functions_post.'.$phpEx);

$userdata = session_pagestart($user_ip, PAGE_INDEX);
init_userprefs($userdata);

if( !$userdata['session_logged_in'] )
{
$message="You must login or register";
message_die(GENERAL_MESSAGE, $message);
}

include ($phpbb_root_path . 'includes/page_header.'.$phpEx);

blah blah blah etc...

my custom page here
------------------------

So my question is, does that put my custom page and all of its forms under the protection of phpbb_security?

Or does phpbb_security only secure the original package?

Statistics: Posted Author: computerskillz — Thu Jun 29, 2006 9:10 pm