(or even know the username/password) on the remote site?
This isn't intended to stop serious hackers, just enough security to
stop casual passers-by.
Thanks,
Bill
--
Bill Rausch
We first make our habits and then our habits make us. --John Dryden
--
PHP General Mailing List (http://www.php.net
Hi all,
Do I have to worry about the ZVAL overflow vulnerability if I don't
use unserialize() in my code? Or is it used behind the scenes whether
I call it directly or not?
I have a web server running PHP 4.4.4 with only one custom
application running on it. The server is dedicated to this
I see reading the online docs that I'm supposed to go:
socket_create...
socket_bind...
socket_connect...
I've never used the bind function and it hasn't seemed to make any
difference? I've always just done socket_create() and then
socket_connect(). What benefit is there to putting a
though. No
error message, no output. Just the 127 (-1?)
So, what do I have to change in my setup to get the exec functions to
work in the web server?
Thanks,
Bill Rausch
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
At 13:22 -0800 3/23/05, Rasmus Lerdorf wrote:
Bill Rausch wrote:
Hi all,
I'm having the same problem as Jim Poserina. Richard pointed out
some things to try. Here's my story.
We installed Fedora 3 on a new box. Then we installed Apache 2 and
PHP 4.3.9 from the RPMs that came on the CDs
like:
...
$uri = urldecode(substr($REQUEST_URI,8)); # skip over the /dl.php/
$x = strpos( $uri, ? ); # get rid of trailing SID, etc.
if( $x 0 )
$uri = substr($uri,0,$x);
header( ...
header( ...
readfile( $realfileloc/$uri );
...
Bill
--
Bill Rausch, Software
) / and round() are all you need.
- Original Message -
From: Bill Rausch [EMAIL PROTECTED]
Subject: printf scientific notation?
Can PHP print floating point numbers using scientific notation?
(like 1.32e+5) sscanf reads them ok using %f, but I'd like to print
them with %e or %g
(4.0.6)
Thanks.
--
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact
I've notice that I can read floating point format like:
1.932E+12
Is there any way to output such a number. The %f format string in
printf just prints 19320.00. Then I tried %e and got
very strange results. The 1.932 was printed with nothing after it.
--
Bill Rausch
There doesn't appear to be an fprintf function. I'm using:
fputs( $fp, sprintf( $format, ... ) );
Is this the recommended workaround?
I was wondering why fprintf was left out since so many other standard
C library routines are present?
--
Bill Rausch, Software Development, Unix, Mac
);
echo 404 File Not Found: ;
echo $HTTP_SERVER_VARS[REDIRECT_URL];
?
I felt that if nothing else I could slow the worm down a little by
wasting its time before it races off to the next potential target.
Does what I'm doing make any sense or am I all confused?
--
Bill Rausch, Software Development
to really configure it for optimum safety/functionality.
...
Just curious about all of this. How many of these various security
issues go away if you are hosting your own site and there are no user
logins on the box other than your own and no services running except
the web server?
--
Bill Rausch
);
header( Content-Type: . FindMime($z) ); // FindMime
is my function
}
else
{
header( Content-Type: application/octet-stream );
}
readfile( $y );
exit;
--
Bill Rausch, Software Development, Unix, Mac, Windows
?PHP_SESSID=...
gets added to the URL automatically. If you just type in 1.php and
then type in 2.php the session variable is not automatically sent
along.
--
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL PROTECTED]
--
PHP General
setting of interest is:
session.cache_limiter =
Depending on SSL, cookies, and other things you might need to set
this to either nothing at all or to public.
--
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL PROTECTED]
--
PHP
problem using the URL approach and the only
thing to do is require cookies be enabled?
Bill
--
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail
is to expire sessions quickly or to
require that cookies be used?
--
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED
to {nocache,private,public} to
; determine HTTP caching aspects
session.cache_expire = 180 ; document expires after n minutes
Thanks,
Bill
---
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL
At 9:11 AM -0700 5/4/01, Martín Marqués wrote:
On Sáb 05 May 2001 00:56, Bill Rausch wrote:
Hi all,
A customer has a problem. They've installed Merlin from Abriasoft. It is
a pre-built Apache/PHP/SSL/MySQL/... package. Their problem is that they
can't download files from my PHP application
, the first
version acts just like IE; the form redraws and that is all. But using the
second variant with both text fields, hitting the Return key in NS does
nothing at all.
Is this just the way it is? :-(
Or is this behavior controllable somehow? :-)
---
Bill Rausch, Software Development, Unix, Mac
At 4:04 PM -0800 3/6/01, Ernest E Vogelsinger wrote:
At 00:56 07.03.2001, Bill Rausch said:
[snip]
What I mean is, if a user is connected to a php page that uses sessions and
that is involved in a time consuming operation (say 20 seconds or more)
before
1.3.12 with PHP 4.0RC2 (it's just a test site at the moment)
---
Bill Rausch, Software Development, Unix, Mac, Windows
Numerical Applications, Inc. 509-943-0861 [EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e
b: Cannot send session cookie - headers already sent in
bUnknown/b on line b0/bbr
br
bWarning/b: Cannot send session cache limiter - headers already
sent in bUnknown/b on line b0/bbr
hello world
Any ideas on what I've got configured wrong?
Thanks.
---
Bill Rausch, Software D
23 matches
Mail list logo