RE: [PHP-DEV] Bug #12965 Updated: fopen() don't open URL files

issues a header redirect. fopen cannot handle the redirect. -Thought I'd give a shot at a little explanation instead of just suggesting the "/". -Brian Tanner -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: August 28, 2001 11:25 AM To: [EMAIL PRO

RE: [PHP-DEV] Security proposal - "SPHP" and helper functions

gass "form_handler" class -- which validates data, cleans it, etc, etc -- but it would be much simpler if I had a better way to get/check some things. -Brian Tanner //Original Message function get_input ($variable) # Return value of input named variable, or "

[PHP-DEV] HEY RASMI SRAS -- READ THE BOTTOM OF THE MESSAGE

To unsubscribe, e-mail: [EMAIL PROTECTED]  

FW: [PHP-DEV] Security Issues

Just passing this along form Ramsi... who sent it to me instead of the list.   (unless he wants to unsubscribe from my point of view :P )-Original Message-From: Ramsi Sras [mailto:[EMAIL PROTECTED]]UNSUBSCRIBE ME PLEASE!! Brian Tanner schrieb: Brian Foddy actually

RE: [PHP-DEV] Security Issues

Brian Foddy actually brings up a really important issue, which would go along way to making (at least me) much happier with the proposed change. *If* there will be: $_Get[] $_Post[] $_Cookie[] -- can we also have something else to the tune of: $_External or $_User or $_Something That gets pop

RE: [PHP-DEV] Security Issues

And my apps are not exactly hit counters either. I'm actually working on a very large project that I'm going to tell you all about one day soon, when its done ;) -Brian T -Original Message- From: Zeev Suraski [mailto:[EMAIL PROTECTED]] Sent: July 27, 2001 10:06 AM To: Brian Tanner

RE: [PHP-DEV] Security Issues

Is all of this springing from that security advisory that was published a short while ago? I remember reading that, and feeling that many of the issues were overblown (if I'm thinking of the same one). Also, wasn't that advisory just written by some guy? Its not like W3C is writing a web securi

RE: [PHP-DEV] Security Issues

our example, and doesn't introduce any new syntax... I don't really see the advantage of the "accept_parameters" idea. -Brian Tanner -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTEC

RE: [PHP-DEV] Bug #12381: Data Structure Dumper Feature Needed

Actually its a great enough idea that its already there ;) http://www.php.net/manual/en/function.serialize.php Internal Format XML Variant if you want to communicate between apps http://www.php.net/manual/en/ref.wddx.php :) I think thats what you are looking for Brian Tanner Project Manager

RE: [PHP-DEV] Security Issues

up on PHP just as they have on Perl -- because it is just too difficult for them to learn. My .02 -Brian Tanner >this is not a language issue, it is a >script-coder one, >if someone is not able to handle this, >he is not able to write scripts if register_globals is turned off >too &

RE: [PHP-DEV] Possible feature for current version of PHP or PHP 4.1/5.0.

Sounds like an excellent solution actually. As long as I don't get penalized for providing an absolute path for all my included files, I am a happy camper! :) Brian Tanner Project Manager Zaam Internet Solutions Toll Free: 1-866-225-2675 [EMAIL PROTECTED] http://www.zaam.com -Ori

RE: [PHP-DEV] Possible feature for current version of PHP or PHP 4.1/5.0.

the script that called their file, and they might have to end up re-implementing existing workarounds anyway. Just a thought. -Brian Tanner -Original Message- From: Zeev Suraski [mailto:[EMAIL PROTECTED]] Sent: July 9, 2001 5:48 AM To: Andi Gutmans Cc: [EMAIL PROTECTED] Subject: Re: [PHP-DEV

RE: [PHP-DEV] Bug #11961: \r\n or \n

alize, but a CGI version unserialize worked fine... I got told to always write in binary mode, and that the inconsistency when reading was not important. :( Win32, btw -Brian Tanner -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: July 8, 2001 3:46 PM To: [

RE: [PHP-DEV] Possible feature for current version of PHP or PHP 4.1/5.0.

uess as long as it doesn't add to ambiguity (would there be include_relative() or include($FilePath[,boolean relative])... could be useful. -Brian Tanner -Original Message- From: Andi Gutmans [mailto:[EMAIL PROTECTED]] Sent: July 8, 2001 9:15 AM To: [EMAIL PROTECTED] Subject: [PH

[PHP-DEV] RE: Bug #11749 Updated: Unserialize dies with Apache Module but is FINE with CGI

You may consider it fixed if you like. However... the data file failed to load in Module, and did load in CGI. Shouldn't they be identical? -Brian -Original Message- From: Bug Database [mailto:[EMAIL PROTECTED]] Sent: June 29, 2001 1:17 AM To: [EMAIL PROTECTED] Subject: Bug #11749 Upda

[PHP-DEV] BUG -- (manual send -- the Bug mail send failed)

From: [EMAIL PROTECTED] Operating system: Win32 (Win 2k) PHP version: 4.0.6 PHP Bug Type: Scripting Engine problem Bug description: Unserialize dies with Apache Module but is FINE with CGI I've been running fine on CGI for a while now, jumping between 4.04, 4.07-dev, 4.05 W

[PHP-DEV] Scratch That about Arg_Separator

Found it.. sorry to bug you all. -Brian -- PHP Development Mailing List To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]

[PHP-DEV] ARG Separation for Get Vars

I remember some discussion a while back for adding the option of separating GET vars in the query string with ";" rather than "&". I'm on a big XHTML compliance kick right now, and after doing some basic testing (which worked because PHP is so flexible), I realized my vars (if more than 1 ;) ) a

RE: [PHP-DEV] Totally Blue Sky

I'm not sure you would be able to distribute a commercial application that is built around PHP commercially, could you? Isn't that what the GPL protects against? -Brian -Original Message- From: Marc Boeren [mailto:[EMAIL PROTECTED]] Sent: June 25, 2001 12:56 AM To: 'Gre7g Luterman'; '[E

RE: [PHP-DEV] About ext/sockets/

onvenient. You guys are just a little biased (IMHO), because you are all talented, experienced, C programmers. Anyway.. basically just wanted to say that I have used the new API, it works well, and I was very happy to see sockets making it to windows. -Brian Tanner -Original Message- F

RE: [PHP-DEV] Read a file into a string (RE: [PHP-DEV] Sablotron leaks)

Doesn't this do that? $FilePointer=fopen($FileLocation,"r"); $_MyString.=fread($FilePointer,filesize ($FileLocation)); fclose($FilePointer); Althought I guess this could suck memory pretty hard on large files, and you guys want to get away from that... -Brian > Blah... I see this a l

RE: [PHP-DEV] Internal Working -- performance question

hanks. -Brian -Original Message- From: James Moore [mailto:[EMAIL PROTECTED]] Sent: June 23, 2001 3:04 AM To: 'Brian Tanner'; [EMAIL PROTECTED] Subject: RE: [PHP-DEV] Internal Working -- performance question > a) Is there a faster way to send data between 2 processes, > th

[PHP-DEV] Internal Working -- performance question

e as you guys. -Thanks in advance, sorry for the intrustion. -Brian Tanner -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]

RE: [PHP-DEV] Totally Blue Sky

GTK is actually a GUI and is not based on HTML at all... I think what Greg is looking for is an HTML based application that runs standalone... -Brian Have you looked at http://gtk.php.net/? Maybe that's what you need. Edin - Original Message - From: "Gre7g Luterman" <[EMAIL PROTECTED]

RE: [PHP-DEV] Bug #8989 Updated: Bug#5493 resurfaced

I want to chime in here. The reason (IMHO) that they are asking you to test the latest release is because you are reporting a symptom of a bigger problem. They *think* that they fixed the bigger problem. However, the best way to be *sure* (like you want) -- is to have people see if the symptoms

RE: [PHP-DEV] Totally Blue Sky

the application. Again, agree on a standardized apache config so that there is only one site running... which is on local host, you're pretty much set. I think its a great idea. Brian Tanner Project Manager Zaam Internet Solutions Toll Free: 1-866-225-2675 [EMAIL PROTECTED] http://www.zaa

[PHP-DEV] Cookie Detection

t;sid" passing as well as cookies... but I'd love to know how to detect -Brian Tanner -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]

RE: [PHP-DEV] Register_Shutdown_Function happens before shutdown

then: int ignore_user_abort ([int setting]) Also, it seems pretty useless that ShutDown functions can't output to the browser... if it is guaranteed to be hanging around anyway. Why is that? -Brian Tanner Brian Moon -- de

RE: [PHP-DEV] Bug #11512: Parsing of vars inside a string

its way to implicitly treat it like: $vartwo="foo_".$varone instead of $vartwo="foo_$varone"; You mentioned that in your example, $vartwo is not "blah_foo" as expected... if you cranked your error reporting, you'll probably get an error like "$varone_foo

[PHP-DEV] Register_Shutdown_Function happens before shutdown

page. However, I have tested Register_Shutdown_Function as much as I can locally, and no matter what I try... I have to wait until my shutdown functions are done before I see the page, get redirected, or whatever. This is bug or a feature? Or am I a dummy? -Brian Tanner -- PHP Development

RE: [PHP-DEV] Bug #11075: bad operation of nl2br function

Ok, I've seen this "bug" reported too many times to sit idly by. :) The has the "/" so that the html is XHTML compliant. (if memory serves) My question -- is this breaking anything for anyone? Is in any way detrimental to browsers anywhere? Brian Tanner Proj

[PHP-DEV] Manual Error

Maybe its just me, but the section to do with objects, more specifically the "::" page is labelled: http://www.php.net/manual/en/keyword.paamayim_nekudotayim.php Is that how it should be? -Tanner -- PHP Development Mailing List To unsubscribe, e-mail: [EMAIL PROTECTED]

[PHP-DEV] Timeout Function:

learned PHP didn't have. Of course, I have no idea how hard it would be to do... so my opinion isn't worth a hole lot more than .02 Brian Tanner http://www.zaam.com -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands