php-windows Digest 17 May 2007 21:16:54 -0000 Issue 3230
Topics (messages 27900 through 27908):
Re: [PHP-DB] $_POST["mypassword"]; ***Undefined index: mypassword
27900 by: Mikael Grön
27902 by: bedul
spam-attempts at certain domain - what to do.
27901 by: Gustav Wiberg
27903 by: bedul
27905 by: Gustav Wiberg
27906 by: Bill Bolte
27907 by: Jarrett Meyer
Stability issues on Win 2003
27904 by: Mike Howarth
Textarea and mysql
27908 by: Moore, Joshua
Administrivia:
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
--- Begin Message ---
Simple. A resource, like the stuff you get when running mysql_query for
instance ($resource = mysql_query($sql);) cannot be stored in a session
variable. When you go to a new page, the resource variable is no longer
linked to the results of the mysql query and thus wasn't stored.
You following?
But I don't understand what sessions and resources has to do with $_POST
variables!
Mike
bedul skrev:
the problem is right here (said on error msg):
session_register("myusername"); session_register("mypassword");
u should use session_register("myusername") after declare the name.
i taken from my php chm
It is currently impossible to register resource variables in a session. For
example, you cannot create a connection to a database and store the connection
id as a session variable and expect the connection to still be valid the next
time the session is restored. PHP functions that return a resource are
identified by having a return type of resource in their function definition. A
list of functions that return resources are available in the resource types
appendix.
if you understand what statement above.. conguration, if not.. don't shock.. me
either.
for phpWin.. this topic perhaps easy for you to answer.
--- End Message ---
--- Begin Message ---
it seem the poster already have the answer..
what he/she going to do was how to save username and pass on session.
thx for your help
----- Original Message -----
From: "Chris" <[EMAIL PROTECTED]>
To: "bedul" <[EMAIL PROTECTED]>
Cc: "Chetanji" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Tuesday, May 15, 2007 11:49 AM
Subject: Re: [PHP-DB] $_POST["mypassword"]; ***Undefined index: mypassword
> [ taking php-windows out again :P ]
>
> bedul wrote:
> > the problem is right here (said on error msg):
> > session_register("myusername"); session_register("mypassword");
> >
> > u should use session_register("myusername") after declare the name.
> > i taken from my php chm
> >
> > It is currently impossible to register resource variables in a session.
For example, you cannot create a connection to a database and store the
connection id as a session variable and expect the connection to still be
valid the next time the session is restored. PHP functions that return a
resource are identified by having a return type of resource in their
function definition. A list of functions that return resources are available
in the resource types appendix.
> >
> > if you understand what statement above.. conguration, if not.. don't
shock.. me either.
>
> You can't store database connections in a session.
>
> Ie you can't:
>
> $connection = mysql_connect(....);
>
> $_SESSION['DbConnection'] = $connection;
>
>
> because the HTTP protocol (and thus PHP) is stateless - you don't know
> where the next connection is coming from or even if there is another
> connection coming.
>
> If there is another HTTP request, you have no way of linking request '1'
> (where the database connection was set up) to request '47' in the chain.
>
> --
> Postgresql & php tutorials
> http://www.designmagick.com/
--- End Message ---
--- Begin Message ---
Hi there!
We get a lot of spam through forms at a certain domain. (We get a mail that
there is a spam attempt (this is done by us through code) - there's not actual
a spam sent). Is there any thing to do more than creating spam-filters in PHP
and the mail-server? (if you know there is a certain domain it is a problem
with)
Best regards
/Gustav Wiberg
--- End Message ---
--- Begin Message ---
gleg...
i don't have any??
can you cross check the origin of spam?
----- Original Message -----
From: "Gustav Wiberg" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, May 15, 2007 1:55 PM
Subject: [PHP-WIN] spam-attempts at certain domain - what to do.
Hi there!
We get a lot of spam through forms at a certain domain. (We get a mail that
there is a spam attempt (this is done by us through code) - there's not
actual a spam sent). Is there any thing to do more than creating
spam-filters in PHP and the mail-server? (if you know there is a certain
domain it is a problem with)
Best regards
/Gustav Wiberg
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
Hi!
What do you mean by cross-checking the origin of spam?
Best regards
/Gustav Wiberg
-----Original Message-----
From: bedul [mailto:[EMAIL PROTECTED]
Sent: Tuesday, May 15, 2007 11:10 AM
To: Gustav Wiberg
Cc: [EMAIL PROTECTED]
Subject: Re: [PHP-WIN] spam-attempts at certain domain - what to do.
gleg...
i don't have any??
can you cross check the origin of spam?
----- Original Message -----
From: "Gustav Wiberg" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, May 15, 2007 1:55 PM
Subject: [PHP-WIN] spam-attempts at certain domain - what to do.
Hi there!
We get a lot of spam through forms at a certain domain. (We get a mail that
there is a spam attempt (this is done by us through code) - there's not
actual a spam sent). Is there any thing to do more than creating
spam-filters in PHP and the mail-server? (if you know there is a certain
domain it is a problem with)
Best regards
/Gustav Wiberg
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
There are some things that can be done at the form level, I've used
several of these with good results (these are not in any particular
order):
1) add a capcha/security image to the form.
2) check the referrer before actually emailing the form results to make
sure the submission is coming from the correct site.
3) add an hidden field to the form with an empty value. If the field has
a value on submit, then the form was most likely submitted by a bot,
they tend to put data in every field. Name the field with something like
"email3" or "phone5", etc rather than something obscure to better
capture bots (at least this is what I read in a couple of places).
4) validate data on the backend before submitting to reduce the email
injection issues. PHP email injection has been talked a lot recently on
many blogs and tech sites.
I do 2 & 4 as a practice. #3 is one we've recently tried with good
results. I haven't had to resort to #1 yet.
Bill
-----Original Message-----
From: Gustav Wiberg [mailto:[EMAIL PROTECTED]
Sent: Tuesday, May 15, 2007 1:55 AM
To: 'php windows' ([EMAIL PROTECTED])
Subject: [PHP-WIN] spam-attempts at certain domain - what to do.
Hi there!
We get a lot of spam through forms at a certain domain. (We get a mail
that there is a spam attempt (this is done by us through code) - there's
not actual a spam sent). Is there any thing to do more than creating
spam-filters in PHP and the mail-server? (if you know there is a certain
domain it is a problem with)
Best regards
/Gustav Wiberg
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
I wish I could find the article...
The idea behind it was instead of "Prove you are a human", try using "Prove you
are not a robot" tactics. Although it sounds the same, it has different
techniques applied. #3 was a biggie on the list.
Argh! Why can't I find that link? You may want to search for it, and see what
you find.
Thank you,
Jarrett Meyer
http://jarrettmeyer.blogspot.com
No trees were harmed during this transmission; however, several electrons were
terribly inconvenienced.
----- Original Message ----
From: Bill Bolte <[EMAIL PROTECTED]>
To: Gustav Wiberg <[EMAIL PROTECTED]>; [EMAIL PROTECTED]
Sent: Tuesday, May 15, 2007 9:19:31 AM
Subject: RE: [PHP-WIN] spam-attempts at certain domain - what to do.
There are some things that can be done at the form level, I've used
several of these with good results (these are not in any particular
order):
1) add a capcha/security image to the form.
2) check the referrer before actually emailing the form results to make
sure the submission is coming from the correct site.
3) add an hidden field to the form with an empty value. If the field has
a value on submit, then the form was most likely submitted by a bot,
they tend to put data in every field. Name the field with something like
"email3" or "phone5", etc rather than something obscure to better
capture bots (at least this is what I read in a couple of places).
4) validate data on the backend before submitting to reduce the email
injection issues. PHP email injection has been talked a lot recently on
many blogs and tech sites.
I do 2 & 4 as a practice. #3 is one we've recently tried with good
results. I haven't had to resort to #1 yet.
Bill
-----Original Message-----
From: Gustav Wiberg [mailto:[EMAIL PROTECTED]
Sent: Tuesday, May 15, 2007 1:55 AM
To: 'php windows' ([EMAIL PROTECTED])
Subject: [PHP-WIN] spam-attempts at certain domain - what to do.
Hi there!
We get a lot of spam through forms at a certain domain. (We get a mail
that there is a spam attempt (this is done by us through code) - there's
not actual a spam sent). Is there any thing to do more than creating
spam-filters in PHP and the mail-server? (if you know there is a certain
domain it is a problem with)
Best regards
/Gustav Wiberg
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
Hi
I was wondering whether anyone can help me.
I'm currently having problems with a windows server running PHP using the
isapi_fcgi.dll written by Shane Caraveo.
Over the past couple of weeks the PHP application running on the server has
begun to become unresponsive and the ISAPI extension requests ramp up
significantly. At the moment I cannot establish a pattern to why this is
occuring.
Having looked through the windows event log, php error log and http access
log I cannot see anything which would account for this.
Anyone got any ideas of where I can go from here? At the moment the web host
I'm dealing with is being particularly unhelpful and I'm not entirely sure
of what to look at next.
--
View this message in context:
http://www.nabble.com/Stability-issues-on-Win-2003-tf3757468.html#a10619826
Sent from the Php - Windows mailing list archive at Nabble.com.
--- End Message ---
--- Begin Message ---
Hello,
Im currently having a bit of an issue with putting user info from a textarea
into mysql db with php. With the textarea I need each new line to be a
separate entry into the db fields. So I guess the end result is making the
textarea act like a regular text html form. The reason I am using textarea is
because I want a user to paste in a long string of numbers
Ex:
11111111
22222222
33333333
...and so on
And each will end up in the same field just different entries.
Does anyone have any idea how I can accomplish this?
Thanks
--- End Message ---
