php-windows Digest 6 Feb 2007 14:39:14 -0000 Issue 3132
Topics (messages 27456 through 27458):
Re: Question on virus/worms
27456 by: Stut
SSL on Windows Server 2003
27457 by: Vandegrift, Ken
27458 by: Gustav Wiberg
Administrivia:
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[email protected]
----------------------------------------------------------------------
--- Begin Message ---
Seak, Teng-Fong wrote:
PHP/Chaploit
http://vil.nai.com/vil/content/v_129568.htm
Perl/BackDoor-CXY.gen
http://vil.nai.com/vil/content/v_138658.htm
PHP/BackDoor.gen
http://vil.nai.com/vil/content/v_136948.htm
BackDoor-CUS!php Trojan
http://vil.nai.com/vil/content/v_136195.htm
Do they mean anything to anyone of you? Do you know how they've got
inside the computer? Is there anything to do to prevent that? Are they
known PHP virus/worms to PHP community?
Most likely means of them getting onto your machine is poorly written
scripts, over-reliance on scripts downloaded from the web and poor
server security.
Hope that helps.
-Stut
--- End Message ---
--- Begin Message ---
Good Day To All,
System Config:
Windows Server 2003
PHP 5.2
I'm hoping someone can help give me a high level understanding between
the differences between an SSL certificate installed on my webserver and
an SSL module (e.g. OpenSSL) installed on my web server.
1. My current understanding is that the SSL certificate installed on my
webserver will encrypt data coming from and going to a client web
browser if the protocol is HTTPS. So, if on a checkout form at my web
store the url begins with https, then credit card info, etc. will be
encrypted and considered safe from sniffers, etc. Is this correct?
2. I become fuzzy then for the need or proper use of an SSL module
(let's just go with OpenSSL). Specifically, my current webstore has
VeriSign's Payflow Pro API installed on the webserver, and I have
written a class that sends payment requests to VeriSign by using the
Payflow Pro as a COM object. However, this is very slow (taking 30
seconds per transaction). Recently my company purchased X-Cart Shopping
cart software and I am trying to get this configured to use our Payflow
Pro account using XMLPay. However, I keep getting an error that no SSL
module could be located for secure transactions. So, why do I need an
SSL module if I am submitting transaction data to an HTTPS url?
PHP is configured with OpenSSL support (v0.9.8d), I assume this just
means OpenSSL functions are available, but I still need to install
OpenSSL on my webserver?
Any clarification would be much appreciated.
Thank you.
Ken Vandegrift
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>
Web Administrator
Sharis Mgmt. Corp
--- End Message ---
--- Begin Message ---
Hi there guys!
Do you know any way of getting NEXT row based on a specific ID in db?
<?php
$thisRow = $_GET["thisrow"];
$thisID = $_GET["thisID"];
//Get next row (With ID and sortorder-nr from db
//
$sql2 = "SELECT IDPrice, sortOrder FROM tbprices WHERE sortOrder>" . $db ->
safeQuote($thisRow);
$dbArray = $db -> makeArray($sql2);
$dbNextSortOrder = $dbArray["sortOrder"];
$dbNextIDPrice = $dbArray["IDPrice"];
I can't have sortorder> (larger than) BECAUSE the sortorder don't have to be
larger in the actual table. Of course, I can loop through a table but it
doesn't seem so good programming practice
?>
Best regards
/Gustav Wiberg
--- End Message ---
