[TYPO3-dev] Hacked TYPO3 Sites
Martin Kutschker
Martin.Kutschker at n0spam-blackbox.net
Wed Aug 1 15:09:23 CEST 2007
Dmitry Dulepov schrieb:
> Martin Kutschker wrote:
>> Would it be securitywise better to remove PHP config files in favour
>> of XML files (with XML-CASE-constructs and PHP post-processing hooks)
>> and caching with serialized arrays?
>
> Yet another small step to kill performance :)
No. It would even be better because the config cache would contain the
serialzed config data, while the cache currently contains PHP code which
must be extecuted.
I would like to see a minimum of executable PHP files and getting rid of
the PHP config files is a step in that direction.
Masi
More information about the TYPO3-dev
mailing list