well, i think that the best option would be having during installation a BIG RED MESSAGE telling you that register globals is on and poses a security risk, and showing it in admin panell all the times.Graham wrote: Now back to the original topic, whilst we are not 100% decided yet on whether we will refuse to install on systems with this enabled (the inclusion at this stage was a way for me to guage the reaction from people trying it and find problems), it is quite likely that we will do so.
Now yes, it is easy to remove that check from the code, but clearly if you do so, you run at your own risk for any problems which may arise via that route
the software should be able to run on different systems, and most of the shared environment accounts will have register_globals turned on, without the ability to disable it via htaccess or their host ( like me ) .