Results 1 to 6 of 6

Thread: PHP Easter eggs, Security issue?

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Previous Post

Next Post

November 29th, 2004, 08:16 PM #1
Soda_Popinsky

View Profile

View Forum Posts

Visit Homepage
Join Date

Nov 2003

Posts

1,426
PHP Easter eggs, Security issue?

So apparantly PHP has easter eggs.

Find a site with PHP, and put this after the .php

?=PHPE9568F35-D428-11d2-A769-00AA001ACF42

Such as
http://www.antionline.com/index.php?...9-00AA001ACF42
It will display the Zend logo.

http://www.antionline.com/index.php?...9-4C7B08C10000
Shows credits (w/ version).

http://www.antionline.com/index.php?...9-00AA001ACF42
Shows a PHP logo.

http://www.antionline.com/index.php?...9-00AA001ACF42
Shows a puppy.

Worst part is that some of these change with the version of PHP (fingerprinting). They can be disabled by altering you php.ini file, (expose_php), but apparantly Antionline didn't know about it.

I don't think I like easter eggs in open source projects. Waste of code IMO.
Reply With Quote

Quick Navigation Web Security Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Terms of Service | About Us | Privacy Notice | Contact Us | Advertise | Sitemap| California - Do Not Sell My Info

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

All times are GMT +1. The time now is 09:15 AM.