If you know what is good for you, you will stop this method that your using and come up with a better one. You are open to so many attacks, it's unbelievable. I really, really, hope you have a solid validation routine for the files your including.
How about using method='post' for your forms. Then the variables won't show up in the URL. ---John Holmes... ----- Original Message ----- From: "Fearless Froggie" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, May 01, 2002 2:04 PM Subject: [PHP] PHP and Log Analyzers > Because of the way I'm including files and passing > variables on the url I'm finding it difficult to get > the information I need from my log analyzer (I'm using > an older version of Web Trends). I thought I'd email > the list and see if anybody else has had the same > problem and has found a solution. > > On my website I have one main file that I use... > > 1) to bring in dynamic information from the database > (I just add the article id information to the url . . > . ie, "index.php3?article_id=12&category_id=44") > > 2) or to include php files or html files. I just add > the name of the html or php file to the url . . . ie, > "index.php3?file_name=a_php_form.php3". > > That way I only need to update "index.php3" anytime > the layout of the site changes. > > The log analyser will count > "index.php3?article_id=12&category_id=44" as a > separate page than > "index.php3?file_name=a_php_form.php3" which is great > -- they are separate content areas afterall. > > The problem is that in some cases I am also passing > form information on the URL .... for example > "index.php3?file_name=a_php_form.php3&name=bob&street=broadway". > Now when I run the log analyzer it will list > "index.php3?file_name=a_php_form.php3&name=bob&street=broadway" > as a separate page than > "index.php3?file_name=a_php_form.php3&name=judy&street=mainstreet". > Ooops that's a problem cause they are the same content > area and now I'm ending up with 5 zillion separate > scores in the log analyzer for them. I could use a > cookie to save that form information, but I'm hoping > to avoid it. > > It would be nice if there were a log analyzer > available that you could just type part of a url into, > for example "index.php3?file_name=a_php_form.php3", > and then get a score for any url containing that > phrase. Or perhaps a program that would parse the log > file into IP Address / Date / Time / HTTP Request. > Then I could play around with it in a spreadsheet > program. > > I'm sure one day down the road I'll be looking back at > this problem and realize I missed something really > obvious, but for now does anybody have any bright > ideas? > > Rita Mikusch > > __________________________________________________ > Do You Yahoo!? > Yahoo! Health - your guide to health and wellness > http://health.yahoo.com > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
