I did a google search on php_flag register_globals and joomla was in the 8th position.&nbsp; <br><br>I tried Joomla for the first time several weeks ago.&nbsp; I really like what I see and hope to spend more time looking at it.&nbsp; At a very minimum extracts can expedite my efforts and possibly something as simple as a&nbsp; template change may get me where I want to go.&nbsp; It's a smooth application that would take a bunch of work to duplicate.&nbsp; <br><br>Hearing the security problems are not directly related to Joomla is great news.&nbsp; I also think that the source code should be at a minimum adequate due to peer review. &nbsp;  &nbsp; <br><br>Thoughts?<br>Keith<br><br><br><br><br><b><i>Edward Norton &lt;r00t3d@gmail.com&gt;</i></b> wrote:<blockquote class="replbq" style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;"> <span class="gmail_quote">On 1/1/07, <b class="gmail_sendername">keith smith</b> &lt;<a
 href="mailto:klsmith2020@yahoo.com">klsmith2020@yahoo.com</a>&gt; wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"> Thanks, I'll check that out.&nbsp; I just read in a forum that if you put a php.ini in the home directory (I assume DocumentRoot) that PHP reads that one first.<br><br>Seems like a security risk to do so.<br><br>See <a href="http://www.go4expert.com/forums/showthread.php?t=397" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)"> http://www.go4expert.com/forums/showthread.php?t=397</a> <br><br>could that be so?<br><br>Thanks,<br><span class="sg">Keith</span></blockquote><div><br>It&nbsp;seems&nbsp;possible&nbsp;to&nbsp;do&nbsp;so,&nbsp;however&nbsp;I've&nbsp;never&nbsp;tried&nbsp;it&nbsp;myself. I'd have to agree with you on the security risk. It doesn't sound like a good idea to have the php conf in your documentroot. </div><br><br>
 ---------------------------------------------------<br>PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us<br>To subscribe, unsubscribe, or to change  you mail settings:<br>http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss</blockquote><br><BR><BR><span style="font-weight: bold;">Keith Smith </span><br><span style="background-color: rgb(192, 0, 0); color: rgb(255, 255, 255);">A link from my website to yours</span><br><a href="http://www.dophoenix.com/submit.php">Submit Your Metro Phoenix Website</a><p>&#32;__________________________________________________<br>Do You Yahoo!?<br>Tired of spam?  Yahoo! Mail has the best spam protection around <br>http://mail.yahoo.com