Editing XML via PHP safely.
Posted: Mon May 24, 2010 1:25 pm
Hello all,
I recently decided to design and develop a photo gallery that can be easily managed by the user without relying on a database. I decided to use XML as my data storage and source, but quickly realized a potential flaw. The write permissions must be set to global in order to write over the existing one with updated data via PHP.
My question is, how risky is this? Could somebody easily manipulate the file from a remote server? Is there any way I can write to the file from my server without leaving the permissions wide open?
Thanks in advance
I recently decided to design and develop a photo gallery that can be easily managed by the user without relying on a database. I decided to use XML as my data storage and source, but quickly realized a potential flaw. The write permissions must be set to global in order to write over the existing one with updated data via PHP.
My question is, how risky is this? Could somebody easily manipulate the file from a remote server? Is there any way I can write to the file from my server without leaving the permissions wide open?
Thanks in advance