Doing this first means our above code would work with register_globals on or off as users by default would be unauthorized. When register_globals = on, we could also use It's even possible to take preventative measures to warn when forging is being attempted.
If you know ahead of time exactly where a variable should be coming from, you can check to see if the submitted data is coming from an inappropriate kind of submission.
When on, people use variables yet really don't know for sure where they come from and can only assume.
Internal variables that are defined in the script itself get mixed up with request data sent by users and disabling register_globals changes this.
This page will explain how one can write insecure code with this directive but keep in mind that the directive itself isn't insecure but rather it's the misuse of it.
When on, register_globals will inject your scripts with all sorts of variables, like request variables from community decided to disable this directive by default.
Safe and secure place, scam protected by the latest technology available today with features like voice and webcam chat, member photos & videos, wink and emails.