lostdreamer - 8:40 am on Jan 9, 2012 (gmt 0)
@ incrediBILL :
I'm sorry to say their is a HUGE security risk with your way....
$_SERVER['DOCUMENT_ROOT'] is a variable that (in a lot of PHP configs) can be overridden by URL / Cookie etc. values if register globals is turned on.
So something like:
Would actually include the badscript.txt instead of your own files.
This has been fixed in PHP 4.2+ if I'm not mistaking.