Date: Sunday, June 21, 2015 12:39:06 PM -0400
From: Aziz Saleh azizsa...@gmail.com
On Sun, Jun 21, 2015 at 9:19 AM, Lester Caine les...@lsces.co.uk
wrote:
OK - this had no chance of success since publish_date_desc is
processed using the _desc ( or _asc ) and any invalid data
stripped
On Sun, Jun 21, 2015 at 9:19 AM, Lester Caine les...@lsces.co.uk wrote:
OK - this had no chance of success since publish_date_desc is processed
using the _desc ( or _asc ) and any invalid data stripped
But what does your application do when it gets an invalid SQL statement?
Maybe it is telling the attacker something important about your database so
that they can compromise it with the appropriate injection.
On 2:36PM, Sun, Jun 21, 2015 Lester Caine les...@lsces.co.uk wrote:
On 21/06/15 18:55,
On 21/06/15 20:14, Mark Murphy wrote:
But what does your application do when it gets an invalid SQL statement?
Maybe it is telling the attacker something important about your database so
that they can compromise it with the appropriate injection.
It just defaults to the first news article in
On 21/06/15 18:55, Richard wrote:
OK - this had no chance of success since publish_date_desc is
processed using the _desc ( or _asc ) and any invalid data
stripped
sort_mode=publish_date_desc%20or%20(1,2)=(select*from(select%20n
Something like this should get you started
?php
// NOT TESTED !!!
class SimpleMapper
{
private $metadata = array();
private $stmt;
public function __construct(PDOStatement $stmt, array $metadata)
{
$this-stmt = $stmt;
$this-metadata = $metadata;
}
On Thu, Jun 11, 2015 at 1:53 AM, Octopus Puras zlk1...@gmail.com wrote:
I have a MySQL table, whose name is Items:
ItemID ItemName ItemDescription
I also have a PHP class:
class Item {
public $id;
public $name;
public $description;
}
If I execute $stmt-fetchObject(), I will get
Ron,
If this is a display issue, have you tried running
stripslashes($outputstring) on the output from the database? That is the
usual way to handle it
Bastien
On Thu, Jun 4, 2015 at 7:29 AM Ron Piggott ron.pigg...@actsministries.org
wrote:
On 03/06/15 09:37, Aziz Saleh wrote:
On Wed, Jun
On 03/06/15 09:37, Aziz Saleh wrote:
On Wed, Jun 3, 2015 at 12:25 AM, Ron Piggott
ron.pigg...@actsministries.org
mailto:ron.pigg...@actsministries.org wrote:
On 02/06/15 23:20, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 11:08 PM, Ron Piggott
ron.pigg...@actsministries.org
On Wed, Jun 3, 2015 at 12:25 AM, Ron Piggott ron.pigg...@actsministries.org
wrote:
On 02/06/15 23:20, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 11:08 PM, Ron Piggott
ron.pigg...@actsministries.org wrote:
On 02/06/15 22:58, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 10:50 PM, Ron
On 02/06/15 23:20, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 11:08 PM, Ron Piggott
ron.pigg...@actsministries.org
mailto:ron.pigg...@actsministries.org wrote:
On 02/06/15 22:58, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 10:50 PM, Ron Piggott
ron.pigg...@actsministries.org
On 02/06/15 22:58, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 10:50 PM, Ron Piggott
ron.pigg...@actsministries.org
mailto:ron.pigg...@actsministries.org wrote:
I am working through the process of removing \'s from the
database. I am trying to get this query using a variable
On Tue, Jun 2, 2015 at 10:50 PM, Ron Piggott ron.pigg...@actsministries.org
wrote:
I am working through the process of removing \'s from the database. I am
trying to get this query using a variable starting with
$query1 =EOF
UPDATE `TABLE_NAME` SET `COLUMN_NAME` =
On Tue, Jun 2, 2015 at 11:08 PM, Ron Piggott ron.pigg...@actsministries.org
wrote:
On 02/06/15 22:58, Aziz Saleh wrote:
On Tue, Jun 2, 2015 at 10:50 PM, Ron Piggott
ron.pigg...@actsministries.org wrote:
I am working through the process of removing \'s from the database. I am
trying
On 16/05/15 10:00, Karl DeSaulniers wrote:
That does clarify things a bit better on both the @ question
and prepared statements. Thank you for the link as well.
So new question.. what is the best type of database to use
for someone who wants to start small and grow big?
My findings led me
On May 16, 2015, at 8:42 AM, Lester Caine les...@lsces.co.uk wrote:
On 16/05/15 10:00, Karl DeSaulniers wrote:
That does clarify things a bit better on both the @ question
and prepared statements. Thank you for the link as well.
So new question.. what is the best type of database to use
On 16/05/15 14:51, Karl DeSaulniers wrote:
Interesting. I program in MySQL on a hosting plan by a third party.
I have heard/read MySQL is not an enterprise solution, but
for the basic business with say less than 100,000 customers,
it does the job and well. Larger than that I had hear Postgres
On 15/05/15 06:21, Karl DeSaulniers wrote:
Oh ok. Now it makes a little more sense.
I have worked in ASP before, but I am programming in PHP and MySQL at the
moment.
I am going to look into Prepared Statements. Thanks for your feedback.
Just to clarify things a little here and explain
On May 16, 2015, at 3:51 AM, Lester Caine les...@lsces.co.uk wrote:
On 15/05/15 06:21, Karl DeSaulniers wrote:
Oh ok. Now it makes a little more sense.
I have worked in ASP before, but I am programming in PHP and MySQL at the
moment.
I am going to look into Prepared Statements. Thanks
On 15.05.2015 07:21, Karl DeSaulniers wrote:
On May 14, 2015, at 11:11 PM, Onatawahtaw onatawah...@yahoo.ca wrote:
Hi Karl,
If you look at the link you provided you'll notice that some of the code is for
ASP.net and some is for PHP.
I have looked in the link. Most problems by inject an
-Kevin Waddell
Proverbs 3:5-6
On Fri, 5/15/15, Ruprecht Helms rhe...@rheynmail.de wrote:
Subject: Re: [PHP-DB] SQL Injection
To: php-db@lists.php.net
Date: Friday, May 15, 2015, 10:16 AM
On 15.05.2015 07:21, Karl DeSaulniers wrote:
On May
On Thu, May 14, 2015 at 9:05 PM, Karl DeSaulniers k...@designdrumm.com
wrote:
Hello Everyone,
Have a quick question. Was reading some material and wanted some Players
perspective.
I know w3schools is not the de-facto on everything, so I wanted to know
how reliable is the information on this
On May 14, 2015, at 8:09 PM, Aziz Saleh azizsa...@gmail.com wrote:
On Thu, May 14, 2015 at 9:05 PM, Karl DeSaulniers k...@designdrumm.com
wrote:
Hello Everyone,
Have a quick question. Was reading some material and wanted some Players
perspective.
I know w3schools is not the de-facto
On 15/05/14 18:19 , Karl DeSaulniers wrote:
On May 14, 2015, at 8:09 PM, Aziz Saleh azizsa...@gmail.com wrote:
On Thu, May 14, 2015 at 9:05 PM, Karl DeSaulniers k...@designdrumm.com wrote:
Hello Everyone,
Have a quick question. Was reading some material and wanted some Players
perspective.
On May 14, 2015, at 8:37 PM, Jigme Datse Yli-Rasku jigme.da...@gmail.com
wrote:
On 15/05/14 18:19 , Karl DeSaulniers wrote:
On May 14, 2015, at 8:09 PM, Aziz Saleh azizsa...@gmail.com wrote:
On Thu, May 14, 2015 at 9:05 PM, Karl DeSaulniers k...@designdrumm.com
wrote:
Hello Everyone,
On May 14, 2015, at 11:11 PM, Onatawahtaw onatawah...@yahoo.ca wrote:
Hi Karl,
If you look at the link you provided you'll notice that some of the code is
for ASP.net and some is for PHP. What of the two are you programming in? If
you are programming in ASP.net you are asking your
Hi Karl,
If you look at the link you provided you'll notice that some of the code is for
ASP.net and some is for PHP. What of the two are you programming in? If you are
programming in ASP.net you are asking your question to the wrong mailing list
as this list is for PHP. If you are programming
#94; is the caret in ascii
Best,
Karl
Sent from losPhone
On May 7, 2015, at 9:18 AM, Guru nagendra802...@gmail.com wrote:
Hi All,
I need help with a tool I am developing for my client. What I want is, how
can I type X^2 square or M Cube (M^3) in html text box. Is there any method
I can
Combine them in SQL and loop through the dataset
select c.*, cd.*
from customers c
inner join customer_details cd on c.id = cd.customer_id
[where clause as needed]
loop thru the recordset from that query just as you would with a query from
a single table and link the id to the edit page
while
Php 6 was cancelled back 2009 or 2011... Language i18n failed.
On Apr 11, 2015 1:21 AM, Jim Giner jim.gi...@albanyhandball.com wrote:
On 4/10/2015 4:03 PM, John Hermsen wrote:
I was wondering if there is anyone who manager to compile the sqlsrv
driver
for php 7.
I have tried, but I haven't
On 4/10/15 3:20 PM, Jim Giner wrote:
On 4/10/2015 4:03 PM, John Hermsen wrote:
I was wondering if there is anyone who manager to compile the sqlsrv driver
for php 7.
I have tried, but I haven't been able to get it compiled yet.
Thanks,
John
php 7?? I didn't even see php 6 go past me!
My apology to the list.
That was meant for Ethan's email only.
I hit reply all when I though I just hit reply.
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com
On Apr 2, 2015, at 2:18 PM, Karl DeSaulniers k...@designdrumm.com wrote:
Bro. Pick a SQL. mysql_ or mysqli_.
Best,
Original Message
Date: Thursday, April 02, 2015 00:18:45 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: php-db@lists.php.net
Cc:
Subject: Re: [PHP-DB] Waiting for localhost
On 04/01/2015 11:41 PM, Karl DeSaulniers wrote:
Question to list, since
Bro. Pick a SQL. mysql_ or mysqli_.
Best,
Karl
Sent from losPhone
On Apr 2, 2015, at 12:48 PM, Ethan Rosenberg
erosenb...@hygeiabiomedical.com wrote:
On 04/02/2015 06:17 AM, Richard wrote:
snip
Here are some hints
service apache2 restart
[] Restarting web server:
Original Message
Date: Thursday, April 02, 2015 13:48:06 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: php-db@lists.php.net
Subject: Re: [PHP-DB] Waiting for localhost
On 04/02/2015 06:17 AM, Richard wrote:
snip
Here are some hints
On 04/02/2015 06:17 AM, Richard wrote:
snip
Here are some hints
service apache2 restart
[] Restarting web server: apache2AH00558: apache2: Could not
reliably determine the server's fully qualified domain name, using
127.0.1.1. Set the 'ServerName' directive globally to suppress
Original Message
Date: Wednesday, April 01, 2015 00:05:29 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: php-db@lists.php.net
Richard -
As we saw in the Apache list, the problem lies in PHP/MySQL
To quote --
Date: Tuesday, March 31,
On 04/01/2015 07:34 AM, Richard wrote:
Original Message
Date: Wednesday, April 01, 2015 00:05:29 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: php-db@lists.php.net
Richard -
As we saw in the Apache list, the problem lies in PHP/MySQL
snip
Question to list, since I have not had to venture to the mysqli territory just
yet,
but is it proper to use mysql_error() with mysqli transactions?
This may be what your missing Ethan.
mysql_error() looks for a mysql_ transactions doesn't it?
Or are they interchangeable?
Best,
Karl
On 04/01/2015 11:41 PM, Karl DeSaulniers wrote:
Question to list, since I have not had to venture to the mysqli territory just
yet,
but is it proper to use mysql_error() with mysqli transactions?
This may be what your missing Ethan.
mysql_error() looks for a mysql_ transactions doesn't it?
Or
On 03/27/2015 06:16 AM, Richard wrote:
snip
Original Message
These errors look odd to me. In many years of working with apache on
a range of *nix OSs, I don't remember a (properly installed) apache
instance that didn't have defaults that worked out of the box. They
may
Original Message
Date: Friday, March 27, 2015 01:29:49 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
On 03/18/2015 07:51 AM, Richard wrote:
Original Message
Date: Wednesday, March 18, 2015 00:23:00 -0400
From: Ethan
On 03/18/2015 07:51 AM, Richard wrote:
Original Message
Date: Wednesday, March 18, 2015 00:23:00 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: Karl DeSaulniers k...@designdrumm.com, PHP Database List
php-db@lists.php.net
Subject: Re: [PHP-DB
Original Message
Date: Wednesday, March 18, 2015 00:23:00 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: Karl DeSaulniers k...@designdrumm.com, PHP Database List
php-db@lists.php.net
Subject: Re: [PHP-DB] Waiting for localhost
Karl -
Thanks
On 03/18/2015 07:51 AM, Richard wrote:
Original Message
Date: Wednesday, March 18, 2015 00:23:00 -0400
From: Ethan Rosenberg erosenb...@hygeiabiomedical.com
To: Karl DeSaulniers k...@designdrumm.com, PHP Database List
php-db@lists.php.net
Subject: Re: [PHP-DB
On 03/16/2015 12:08 AM, Karl DeSaulniers wrote:
Is this a weight that is entered in by your friend or a weight that is grabbed
from a database or a scale per chance?
If it is the latter, you don't need this form, just store the value some other
way and incorporate into your other script that
No, can't say I do.
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com
On Mar 17, 2015, at 11:48 PM, Ethan Rosenberg, PhD
erosenb...@hygeiabiomedical.com wrote:
Karl -
Thanks to you and all others that have replied.
With a little bit of patience [which I should have used
On 03/16/2015 12:08 AM, Karl DeSaulniers wrote:
Is this a weight that is entered in by your friend or a weight that is grabbed
from a database or a scale per chance?
If it is the latter, you don't need this form, just store the value some other
way and incorporate into your other script that
On 3/16/2015 12:02 AM, Ethan Rosenberg wrote:
I have this in the program --
echo form method= 'post' action='HandleWeight.php';
echo centerstronginput type = 'submit' value=
'WEIGH'/strong/center;
echo /form;
I'm testing from a form, which previously worked perfectly -
TIA
Ethan
How
://designdrumm.com http://designdrumm.com/
Begin forwarded message:
*From: *Karl DeSaulniers k...@designdrumm.com
mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com
mailto:erosenb
...@designdrumm.com
mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com
mailto:erosenb...@hygeiabiomedical.com
Try...
if($row7[0] === 1)
{
echo('script type=text/javascriptwindow.location
://designdrumm.com http://designdrumm.com/
Begin forwarded message:
*From: *Karl DeSaulniers k...@designdrumm.com mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com mailto:erosenb
/javascriptwindow.location =
HandleWeight.php;/script');
}
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com http://designdrumm.com/
Begin forwarded message:
*From: *Karl DeSaulniers k...@designdrumm.com
mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting
mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com mailto:erosenb...@hygeiabiomedical.com
Try...
if($row7[0] === 1)
{
echo('script type=text/javascriptwindow.location =
HandleWeight.php;/script
Is this a weight that is entered in by your friend or a weight that is grabbed
from a database or a scale per chance?
If it is the latter, you don't need this form, just store the value some other
way and incorporate into your other script that directs to this form.
Also, I noticed you spelt
...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com
mailto:erosenb...@hygeiabiomedical.com
Try...
if($row7[0] === 1)
{
echo('script type=text/javascriptwindow.location =
HandleWeight.php;/script';
}
Best
/javascriptwindow.location =
HandleWeight.php;/script');
}
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com http://designdrumm.com/
Begin forwarded message:
*From: *Karl DeSaulniers k...@designdrumm.com
mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost
Drumm
http://designdrumm.com http://designdrumm.com/
Begin forwarded message:
*From: *Karl DeSaulniers k...@designdrumm.com mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com mailto:erosenb
/
Begin forwarded message:
*From: *Karl DeSaulniers k...@designdrumm.com mailto:k...@designdrumm.com
*Subject: **Re: [PHP-DB] Waiting for localhost*
*Date: *March 8, 2015 5:58:29 PM CDT
*To: *erosenb...@hygeiabiomedical.com mailto:erosenb...@hygeiabiomedical.com
Try...
if($row7[0] === 1)
{
echo
Cloud computing is just another computer in a remote network. If you have a
website with some host somewhere, you are cloud computing. Just run your
site from a secure host
On Sun, Mar 8, 2015 at 1:04 AM Ethan Rosenberg
erosenb...@hygeiabiomedical.com wrote:
On 02/16/2015 12:10 AM, Mark Murphy
On 03/08/2015 01:40 AM, Karl DeSaulniers wrote:
Ethan,
Open a new window (window.open) inside itself (_self)?
Try window.location for opening a url inside the same window.
Use windlow.open to open a new window (ie: pop-up window).
Also, I would take at least a month and learn basic html and
On 03/08/2015 01:50 AM, Karl DeSaulniers wrote:
Shit! — Half Price Books!
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com
On Mar 8, 2015, at 12:49 AM, Ethan Rosenberg erosenb...@hygeiabiomedical.com
wrote:
On 03/08/2015 01:43 AM, Karl DeSaulniers wrote:
The Dummies series is
On 02/16/2015 12:10 AM, Mark Murphy wrote:
How do you prevent access to the second partition? What good is a second
partition going to do? Both
partitions are visible to the OS. If you only have a single OS, then both the
client and the server
are running on the same OS, and there is only one
On 17 February 2015 at 20:36, Charlie Lewis charlie.le...@honest-it.com
wrote:
I'm not sure that this is entirely the group for my question, so apologise
if it is.
I'm losing data in variables that use the assignment of $_POST[]. Any
variable with a space in the $_POST[] loses everything
Generally input names shouldn't have spaces, use underscores if needed
On Tue Feb 17 2015 at 4:34:55 PM rahul bhola rb1223334...@gmail.com wrote:
Can you post some code snippet here
cheers
Rahul
Hillenaar-Meerveld tm.hillen...@gmail.com
Cc: php-db@lists.php.net, Guru nagendra802...@gmail.com, Karl
DeSaulniers k...@designdrumm.com
Subject: Re: [PHP-DB] Re: Code Security
@Taco, Read back through the whole thread and you will understand.
Ethan just can't do what he wants to with PHP.
On Feb 18
...@hygeiabiomedical.com] Sent: Friday, February 13,
2015 9:12 AMTo: php...@lists.php.netSubject: Re: [PHP-DB] Code
Security
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote: Prevent THIS from
ever happening. On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg
wrote: He asks Mr.[naive]Nice if he could look
, February 13,
2015 9:12 AMTo: php...@lists.php.netSubject: Re: [PHP-DB] Code
Security
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote: Prevent THIS from
ever happening. On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg
wrote: He asks Mr.[naive]Nice if he could look at the computer
Can you post some code snippet here
cheers
Rahul
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote:
Prevent THIS from ever happening.
On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg erosenb...@hygeiabiomedical.com
wrote:
He asks Mr.[naive]Nice if he could look at the computer while it is logged in.
Otherwise, I would say an external key that
Subject: Re: [PHP-DB] Code Security
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote:
Prevent THIS from ever happening.
On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg
erosenb...@hygeiabiomedical.com wrote:
He asks Mr.[naive]Nice if he could look at the computer while it is logged
: [PHP-DB] Code Security
On 02/06/2015 02:45 PM, Bastien Koert wrote:
Hold on, so you've written a point of sale app that exists on the client
machine as whole? Does this
take credit card data?
If so, its so un-fucking-secure that this should never see the light of
day. The CC companies
Subject: Re: [PHP-DB] Code Security
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote:
Prevent THIS from ever happening.
On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg
erosenb...@hygeiabiomedical.com wrote:
He asks Mr.[naive]Nice if he could look at the computer while it is logged
,
2015 9:12 AMTo: php...@lists.php.netSubject: Re: [PHP-DB] Code
Security
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote: Prevent THIS from
ever happening. On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg
wrote: He asks Mr.[naive]Nice if he could look at the computer
while it is logged
users...
Respectfully,
Joshua D. Arneson
-Original Message-From: Ethan Rosenberg
[mailto:erosenb...@hygeiabiomedical.com] Sent: Friday, February 13,
2015 9:12 AMTo: php...@lists.php.netSubject: Re: [PHP-DB] Code
Security
On 02/13/2015 02:58 AM, Karl DeSaulniers wrote: Prevent THIS from
On 02/06/2015 02:45 PM, Bastien Koert wrote:
Hold on, so you've written a point of sale app that exists on the client
machine as whole? Does this
take credit card data?
If so, its so un-fucking-secure that this should never see the light of day.
The CC companies won't
accept this at all and
Prevent THIS from ever happening.
On Feb 12, 2015, at 11:03 PM, Ethan Rosenberg erosenb...@hygeiabiomedical.com
wrote:
He asks Mr.[naive]Nice if he could look at the computer while it is logged in.
Otherwise, I would say an external key that has a salt stored on it that the
user has to
Hold on, so you've written a point of sale app that exists on the client
machine as whole? Does this take credit card data?
If so, its so un-fucking-secure that this should never see the light of
day. The CC companies won't accept this at all and would remove any ability
to accept CCs by the
Original Message
On Feb 5, 2015, at 8:24 PM, Ethan Rosenberg
erosenb...@hygeiabiomedical.com wrote:
On 02/05/2015 11:04 AM, Bastien Koert wrote:
I'm with the two Richard's on this, those users shouldn't have
telnet access to the host server at all. Users should
Hi Ethan,
If the user is to neither write nor use the code then why do they have access
in the first place? Just wondering.
F
On Feb 5, 2015, at 8:24 PM, Ethan Rosenberg erosenb...@hygeiabiomedical.com
wrote:
On 02/05/2015 11:04 AM, Bastien Koert wrote:
I'm with the two Richard's
On 02/05/2015 11:04 AM, Bastien Koert wrote:
I'm with the two Richard's on this, those users shouldn't have telnet
access to the host server at all. Users should be using the browser to
access your site.
Other than that, the most important thing you can do is to regularly back
up your code and
On 5 February 2015 at 05:52, Ethan Rosenberg
erosenb...@hygeiabiomedical.com wrote:
How do I prevent someone from opening a terminal window, going to /var/www
and stealing all my code?
1 - Don't allow terminal access to your box.
2 - Use a PHP byte code encoder (IonCube, Zend Guard) - not
Original Message
Date: Thursday, February 05, 2015 13:10:51 +
From: Richard Quadling rquadl...@gmail.com
To: E Rosenberg erosenb...@hygeiabiomedical.com
Cc: PHP Database List php-db@lists.php.net
Subject: Re: [PHP-DB] Code Security
On 5 February 2015 at 05:52
I'm with the two Richard's on this, those users shouldn't have telnet
access to the host server at all. Users should be using the browser to
access your site.
Other than that, the most important thing you can do is to regularly back
up your code and database to another location so that if
You forgot this one keep the box OFFLINE ... best security :-D
On 05-02-15 14:10, Richard Quadling wrote:
1 - Don't allow terminal access to your box.
2 - Use a PHP byte code encoder (IonCube, Zend Guard) - not perfect as they
can be reversed to access the code in a form.
3 - Don't use PHP.
No worries, Ethan. Sometimes we all try to outsmart ourselves by doing
something new.
Can I ask why you're opening a new window? Could the script not simply be
included in the original PHP code and avoid the window open? I ask because
pop up blockers may inhibit the functionality required. Or
with mariadb/mysql:
2014-11-05 4:20 GMT-02:00 Ron Piggott ron.pigg...@actsministries.org:
Hi Everyone.
I am wondering if there are database queries that would
SHOW DATABASES; - return all databases
a: produce the result of all the tables with a database *
SHOW TABLES FROM
This is extremely helpful. Thank you very much.
SELECT * FROM information_schema.COLUMNS WHERE TABLE_SCHEMA='.$val.'
* where $val is a database
On Wednesday November 5 2014 2:14 AM, Roberto Spadim wrote:
with mariadb/mysql:
2014-11-05 4:20 GMT-02:00 Ron Piggott
Op 15 sep. 2014 om 01:08 heeft Karl DeSaulniers k...@designdrumm.com het
volgende geschreven:
Procedural php. Haven't had a chance to learn OOP. Would love to though. : /
I think I may be moling it a bit too. Guess I was hoping for an easy fix,
don't judge me.. :P
Thanks for all your
On Sep 15, 2014, at 11:51 AM, Jasper Kips jas...@planetkips.nl wrote:
Op 15 sep. 2014 om 01:08 heeft Karl DeSaulniers k...@designdrumm.com het
volgende geschreven:
Procedural php. Haven't had a chance to learn OOP. Would love to though. : /
I think I may be moling it a bit too. Guess I
On 14/09/14 04:57, Karl DeSaulniers wrote:
Awesome, thanks for the link. I know even less about PDO then I do regular
MySQL however.
I am hoping MySQLi isn't too far off a shoot. Just need to sit down with it
all and figure out a path.
PDO is still a bit of a grey area. It was intended to
Procedural php. Haven't had a chance to learn OOP. Would love to though. : /
I think I may be moling it a bit too. Guess I was hoping for an easy fix, don't
judge me.. :P
Thanks for all your responses everyone.
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com
On Sep 14, 2014, at
On 13/09/14 11:40, Karl DeSaulniers wrote:
Hope this message finds you well. Quick question about MySQLi and PHP.
I have a website that was built back in 2012 that is still on PHP 5.2 and
MySQL
and I am wanting to update it to PHP 5.7 with MySQLi without headaches.
I am dreading this like a
On Sep 13, 2014, at 7:40 AM, Lester Caine les...@lsces.co.uk wrote:
On 13/09/14 11:40, Karl DeSaulniers wrote:
Hope this message finds you well. Quick question about MySQLi and PHP.
I have a website that was built back in 2012 that is still on PHP 5.2 and
MySQL
and I am wanting to update
On Sat, Sep 13, 2014 at 8:55 PM, Karl DeSaulniers k...@designdrumm.com
wrote:
On Sep 13, 2014, at 7:40 AM, Lester Caine les...@lsces.co.uk wrote:
On 13/09/14 11:40, Karl DeSaulniers wrote:
Hope this message finds you well. Quick question about MySQLi and PHP.
I have a website that was
Awesome, thanks for the link. I know even less about PDO then I do regular
MySQL however.
I am hoping MySQLi isn't too far off a shoot. Just need to sit down with it all
and figure out a path.
Best,
Karl DeSaulniers
Design Drumm
http://designdrumm.com
On Sep 13, 2014, at 10:52 PM, Aziz
See :
http://stackoverflow.com/questions/14682448/how-to-get-the-total-row-count-with-mysqli
Matt
On Sep 2, 2014 7:38 PM, Ethan Rosenberg erosenb...@hygeiabiomedical.com
wrote:
Dear List -
This works:
mysql describe Purchases;
+---+-+--+-+-++
On Sep 2, 2014, at 9:37 PM, Ethan Rosenberg erosenb...@hygeiabiomedical.com
wrote:
Dear List -
This works:
mysql describe Purchases;
+---+-+--+-+-++
| Field | Type| Null | Key | Default | Extra |
Whoops, this should be..
print_r('Results { '.$rowarray.' }');
Karl DeSaulniers
Design Drumm
http://designdrumm.com
On Sep 2, 2014, at 11:57 PM, Karl DeSaulniers k...@designdrumm.com wrote:
print_r('Results { '.$row.' }');
--
PHP Database Mailing List (http://www.php.net/)
To
Karl,
This works for small datasets, but when you have a large amount of data
(either in terms of storage or row count) it is no longer practical.
This is why people typically use the SQL row count instead of transferring
all of the data to php and doing the work there. It is much more efficient.
101 - 200 of 21034 matches
Mail list logo