Quote Originally Posted by jpf View Post
"Register Globals" is a PHP setting that with OSC MS2 and version like MAX needs to be turned ON - where the new version of PHP are now defaulted to OFF and some hosting company are now giving flack about turning it ON - as there is a REMOTE chance there can ge a security problem - mostly due to very poor programing. OSC and MAX do not have this problem.

This PATCH allow your store to work if Register Globals is OFF and only on OFF.

To allow it to work for OFF or ON needs a total rewrite of MAX and MOST of the MODS/CONTRIBUTIONS (MS3 - when done/released - will be like this however there are few contributions that are done for this yet...)
Right. The problem here is that thousands of people are downloading osc and oscmax and hacking it on they're own. Unlike stock osc, this creates a massive chance for a security problem. I think more thought should be given to this when considering issues such as the register globals one.

Ryan