Thought ppl here may be interested in this:
http://www.oreillynet.com/ruby/blog/2007/09/7_reasons_i_switched_back_to_p_1.html
Originally linked from /.:
http://developers.slashdot.org/article.pl?sid=07/09/23/1249235
Col
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit:
On Sun, 2007-09-23 at 18:02 +0100, Colin Guthrie wrote:
Thought ppl here may be interested in this:
http://www.oreillynet.com/ruby/blog/2007/09/7_reasons_i_switched_back_to_p_1.html
Originally linked from /.:
http://developers.slashdot.org/article.pl?sid=07/09/23/1249235
It's funny, every
That's actually a very good article and while I don't agree with some
of it (most notably #6, the I love SQL.. I find a good ORM layer to be
a life saver should you ever need to make database structure changes
without having all your apps collapse all over themselves), I
certainly agree with the
At 9:27 PM +0200 6/20/07, Tijnema wrote:
On 6/20/07, tedd [EMAIL PROTECTED] wrote:
If you are worried about evil code being in the image, you could
always resample the image (larger or smaller). Not that I have
personal experience, but I would think that any piece of code that is
resampled is
Hi all,
Just received a mail from phpclasses, which pointed to this very
interesting article[1]. Seems good to know for starters ;)
The experts around here probably already know this way of exploits.
Tijnema
[1]
http://www.phpclasses.org/blog/post/67-PHP-security-exploit-with-GIF-images.html
On 6/20/07, Tijnema [EMAIL PROTECTED] wrote:
Hi all,
Just received a mail from phpclasses, which pointed to this very
interesting article[1]. Seems good to know for starters ;)
The experts around here probably already know this way of exploits.
Tijnema
[1]
Daniel Brown wrote:
On 6/20/07, Tijnema [EMAIL PROTECTED] wrote:
Hi all,
Just received a mail from phpclasses, which pointed to this very
interesting article[1]. Seems good to know for starters ;)
The experts around here probably already know this way of exploits.
Tijnema
[1]
On 6/20/07, Jochem Maas [EMAIL PROTECTED] wrote:
Daniel Brown wrote:
On 6/20/07, Tijnema [EMAIL PROTECTED] wrote:
Hi all,
Just received a mail from phpclasses, which pointed to this very
interesting article[1]. Seems good to know for starters ;)
The experts around here probably already
Thanks for the link.
I got worried for a second that my code could be exploited so I did a
quick check to make sure that mime-types were correct. (I check the
mime type to make sure it's an image, not the file extension.) I
renamed a .jpg file .jpg.php and uploaded it and got application/x-php
At 12:53 PM -0400 6/20/07, Daniel Brown wrote:
No, not the upload and execution, per se, but rather using images
to contain processable PHP code.
--
Daniel P. Brown
Daniel:
Wow! Now that's something I would like to see -- you do have a demo?
As far as legitimate reasons, how about
On 6/20/07, tedd [EMAIL PROTECTED] wrote:
At 12:53 PM -0400 6/20/07, Daniel Brown wrote:
No, not the upload and execution, per se, but rather using images
to contain processable PHP code.
--
Daniel P. Brown
Daniel:
Wow! Now that's something I would like to see -- you do have a demo?
As
At 2:32 PM -0400 6/20/07, Guillaume Theoret wrote:
Thanks for the link.
I got worried for a second that my code could be exploited so I did a
quick check to make sure that mime-types were correct. (I check the
mime type to make sure it's an image, not the file extension.) I
renamed a .jpg file
On 6/20/07, tedd [EMAIL PROTECTED] wrote:
At 2:32 PM -0400 6/20/07, Guillaume Theoret wrote:
Thanks for the link.
I got worried for a second that my code could be exploited so I did a
quick check to make sure that mime-types were correct. (I check the
mime type to make sure it's an image, not
On Wed, 2007-06-20 at 15:12 -0400, Daniel Brown wrote:
On 6/20/07, tedd [EMAIL PROTECTED] wrote:
At 12:53 PM -0400 6/20/07, Daniel Brown wrote:
No, not the upload and execution, per se, but rather using images
to contain processable PHP code.
--
Daniel P. Brown
Daniel:
I am working on an XML serializer module for PHP. It will allow session
information to be stored as XML in the database. While this sounds like
self promotion, and it probably is a bit, it is needed to make sense of why
I am doing this. Anyway, the XML stream is so that I can use PHP session
data
On Wed, 2006-01-18 at 15:36, Mark wrote:
[-- CLIPPED --]
Here's a point of debate, should this sort of behavior be allowed? If it is
allowable, how does one support it in any sort of serialized methodology? I
have a few ideas but none very pretty. I'm pretty sure it causes problems
in
On Wed, 2006-01-18 at 15:44, Robert Cummings wrote:
Yes it should be allowed,
Actualy was just thinking about how I didn't allow this in JavaScript...
you might want to make it an option as a second parameter to recurse. I
know in JavaScript any DOM element references the entire DOM tree and
Robert Cummings wrote:
On Wed, 2006-01-18 at 15:36, Mark wrote:
[-- CLIPPED --]
Here's a point of debate, should this sort of behavior be allowed? If it
is allowable, how does one support it in any sort of serialized
methodology? I have a few ideas but none very pretty. I'm pretty sure it
On Wed, January 18, 2006 2:36 pm, Mark wrote:
Here's a point of debate, should this sort of behavior be allowed?
Of course it should be allowed!
It's a standard computer science technique!
There are entire branches of mathematics / science devoted to
recursive graph theory.
Whole *BOOKS*
On Wed, 2006-01-18 at 16:20, Mark wrote:
Robert Cummings wrote:
The implementation is slightly more difficult than what I've just
described, but simple enough :)
It's truly ugly, don't you think?
Actually I find it quite elegant, but maybe that's just me :)
Cheers,
Rob.
--
I creating a out.php file that will record clicks, and the redirect
the user to the site that he wanted. I am currently using
header(Location: $url); which works as expected. The only problem
is, that the browser does not send $HTTP_REFERER info to the recieving
site.
However, that particular
Dotan Cohen wrote:
I creating a out.php file that will record clicks, and the redirect
the user to the site that he wanted. I am currently using
header(Location: $url); which works as expected. The only problem
is, that the browser does not send $HTTP_REFERER info to the recieving
site.
On 8/5/05, Jochem Maas [EMAIL PROTECTED] wrote:
he runs php5, you run php4 - is the following set on his server perchance?:
echo $_SERVER['HTTP_REFERER'];
//or
echo getenv(HTTP_REFERER);
note that $HTTP_REFERER is depreciated in php5.
also the freeBSD box may have a firewall that is
Dotan Cohen wrote:
On 8/5/05, Jochem Maas [EMAIL PROTECTED] wrote:
he runs php5, you run php4 - is the following set on his server perchance?:
echo $_SERVER['HTTP_REFERER'];
//or
echo getenv(HTTP_REFERER);
note that $HTTP_REFERER is depreciated in php5.
also the freeBSD box may have a
Let's say I have a form and the action is thus;
form name=\managebatch\ action=\ . basename($PHP_SELF) .
?bid=edit\ method=\POST\\n;
Note the 'bid' attribute. Now, I have a case statement in which stuff
takes place since the form has called it because of the 'bid' attribute.
Before I break from
But, Jay:
Am I missing something here? It's obvious that the 'bid' parameter will
appear in the query string... That's how the form posts it.
Yes, you can unset it if you like, but the form will still add it to the
URL that it posts to, unless you change the action attribute of the
form tag.
[snip]
Am I missing something here? It's obvious that the 'bid' parameter will
appear in the query string... That's how the form posts it.
Yes, you can unset it if you like, but the form will still add it to the
URL that it posts to, unless you change the action attribute of the
form tag.
Jay Blanchard wrote:
[snip]
Am I missing something here? It's obvious that the 'bid' parameter will
appear in the query string... That's how the form posts it.
Yes, you can unset it if you like, but the form will still add it to the
URL that it posts to, unless you change the action attribute of
Jay Blanchard wrote:
Let's say I have a form and the action is thus;
form name=\managebatch\ action=\ . basename($PHP_SELF) .
?bid=edit\ method=\POST\\n;
Note the 'bid' attribute. Now, I have a case statement in which stuff
takes place since the form has called it because of the 'bid' attribute.
Jay Blanchard wrote:
Let's say I have a form and the action is thus;
form name=\managebatch\ action=\ . basename($PHP_SELF) .
?bid=edit\ method=\POST\\n;
Note the 'bid' attribute. Now, I have a case statement in which stuff
takes place since the form has called it because of the 'bid' attribute.
Chris Dowell wrote:
I haven't searched through the archives to refresh my memory, but it's
something to bear in mind. I wonder whether error messages are also not
passed to the browser.
I have pointed out some more aspects of this issue:
Error messages and normal output are passed to the browser
I discovered an interesting behavior, when ob_end_flush() or
ob_end_clean() is used in a destructor of an object.
I don't think it is actually a bug, so i decided to post it here.
?php
class foo
{
public function __construct()
{
ob_start();
}
public function __desctruct()
it seems that php first ends output buffering and then calls then
destructs the objects. so the output buffering is still ended when the
destructor is calles. one has to unset the object to reverse that
order manually.
aRZed
If I remember correctly, there were a number of posts about this
I have ran into a rather interesting problem while zlib or gzip compression
is enabled on my site. I have an external javascript-php file (a javascript
file that is dynamically generated as in filename.js.php) which is included
in the main template using the script element (for example script
echo \ . $search_for_list[$i][0] . \ works but
echo \$search_for_list[$i][0]\ prints Array[0].
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Bob Lockie [EMAIL PROTECTED]
echo \ . $search_for_list[$i][0] . \ works but
echo \$search_for_list[$i][0]\ prints Array[0].
$search_for_list[$i] is an 'Array' which is followed by the string '[0]' ...
how is PHP supposed to know you mean
$search_for_list[$i][0]?
echo
What does the { } around the array mean?
From: Bob Lockie [EMAIL PROTECTED]
echo \ . $search_for_list[$i][0] . \ works but
echo \$search_for_list[$i][0]\ prints Array[0].
$search_for_list[$i] is an 'Array' which is followed by the string '[0]' ...
how is PHP supposed to know you mean
What does the { } around the array mean?
http://www.php.net/manual/en/language.types.string.php#language.types.string.parsing.complex
-
michal migurski- contact info and pgp key:
sf/ca
From: Daniel Clark
echo \{$search_for_list[$i][0]}\; will work, btw.
What does the {}around the array mean?
It delimits your variable so PHP knows what to interpret as a variable and
what to interpret as a string.
$ar[1] = 'foo';
echo Value is {$ar[1]}; // Value is foo
$ar = 'foo';
echo
Thank you John, and Michal :-)
From: Daniel Clark
echo \{$search_for_list[$i][0]}\; will work, btw.
What does the {}around the array mean?
It delimits your variable so PHP knows what to interpret as a variable and
what to interpret as a string.
$ar[1] = 'foo';
echo Value is {$ar[1]}; //
John W. Holmes wrote:
From: Daniel Clark
echo \{$search_for_list[$i][0]}\; will work, btw.
What does the {}around the array mean?
It delimits your variable so PHP knows what to interpret as a variable and
what to interpret as a string.
$ar[1] = 'foo';
echo Value is {$ar[1]}; // Value is foo
$ar
Good point Justin !
John W. Holmes wrote:
From: Daniel Clark
echo \{$search_for_list[$i][0]}\; will work, btw.
What does the {}around the array mean?
It delimits your variable so PHP knows what to interpret as a variable and
what to interpret as a string.
$ar[1] = 'foo';
echo
From: Justin Patrin [EMAIL PROTECTED]
IMHO it's just better to use concatenation and single quotes for your
string. PHP doesn't have to parse your strings for variables that way
and it makes it obvious what parts are variables.
To each his own. Shall we discuss the merits of print vs. echo
* Thus wrote John W. Holmes ([EMAIL PROTECTED]):
From: Justin Patrin [EMAIL PROTECTED]
IMHO it's just better to use concatenation and single quotes for your
string. PHP doesn't have to parse your strings for variables that way
and it makes it obvious what parts are variables.
To each
Ok, print or echo :-)
From: Justin Patrin [EMAIL PROTECTED]
IMHO it's just better to use concatenation and single quotes for your
string. PHP doesn't have to parse your strings for variables that way
and it makes it obvious what parts are variables.
To each his own. Shall we discuss the
John W. Holmes wrote:
From: Justin Patrin [EMAIL PROTECTED]
IMHO it's just better to use concatenation and single quotes for your
string. PHP doesn't have to parse your strings for variables that way
and it makes it obvious what parts are variables.
To each his own. Shall we discuss the merits of
I just upgraded to 4.3.5. I double checked and made sure I put
everything in the right place. If I run php or php-cli from the command
line and the script has phpversion() in it, it returns the correct
string, i.e. 4.3.5. If, however, I pull the same script up in a browser
it gives me 4.3.4.
* Thus wrote Axel IS Main ([EMAIL PROTECTED]):
I just upgraded to 4.3.5. I double checked and made sure I put
everything in the right place. If I run php or php-cli from the command
line and the script has phpversion() in it, it returns the correct
string, i.e. 4.3.5. If, however, I pull
Dan Goodes [EMAIL PROTECTED] wrote:
Hi folks,
I currently have an interesting dilemma - any help is appreciated (if
possible, CC directly to [EMAIL PROTECTED] as well as the list).
What Ive got is a PHP wrapper script that performs authetication, and uses
readfile() to return the
Hi Chris, a million thanks for the help there. That's what i thought I'd
have to do.
What I'm doing now is inspect the Range header to pull out the start and
end, and then deduce the length, and then using fopen, fseek and fread to
open the file and read from a certain offset for a certain
Hi folks,
I currently have an interesting dilemma - any help is appreciated (if
possible, CC directly to [EMAIL PROTECTED] as well as the list).
What Ive got is a PHP wrapper script that performs authetication, and uses
readfile() to return the requested file. So a user requests
--- Dan Goodes [EMAIL PROTECTED] wrote:
What I want is for the PHP script to read ALL the headers for the
request (in particular, RANGE headers), and then return the relevant
portion of the file. Can this be done fairly simply?
I think you will find all header in the $_SERVER array. It is
Lo all,
Some input much appreciated. I upgraded mod_php4 from 4.2.3 to 4.3.2, and
needless to say, something went horribly wrong. PHP compiled without any
serious problems, and the installation seemed to have gone fine as well.
When issuing a apachectl restart, apache immediately core dumped...
I'm using Command Line php and php-xslt functions ( sablotron 0.96 )
I have got an error such that :
php: output.cpp:1554: Bool OutputterObj::eventAttributeStart(Situation ,
const EQName ): Assertion `!eventAttributeStart' failed.
Any idea?
Fatih stnda
Yre Elektronik Yaymclk A..
0 212 234 00
This is either bug in the extensions, or you give wrong parameters to a
function or method.
Fatih stnda wrote:
I'm using Command Line php and php-xslt functions ( sablotron 0.96 )
I have got an error such that :
php: output.cpp:1554: Bool OutputterObj::eventAttributeStart(Situation ,
const
Hello,
I just recently upgraded from 4.2.3 to 4.3.0 and a script of
mine has begun behaving erratically. The code is included at the bottom
of this message. I am essentially updating a large (1.94m row) table to
include a new field...the queries needed to do this updating are
somewhat
: Ben Vaughn
Sent: Thursday, January 09, 2003 12:25 PM
To: [EMAIL PROTECTED]
Subject: [PHP] Interesting timeout issue
Hello,
I just recently upgraded from 4.2.3 to 4.3.0 and a script of
mine has begun behaving erratically. The code is included at the bottom
of this message. I am
Hey all,
I am having some interesting, but confusing results when I use date().
What is confusing me is that when I use date with only the first argument, I
get some interesting results with the timezone.
i.e.
?php
echo date(r T);
?
You would expect to see something like this:
Fri, 11
Hey PHP General List,
Well i have seen some strange links last few months earlyer i
didn't look at them because i didn't care... and now i am curious...
how to understand link like this Http://www.foo.com/# and thats
it... links ends and as it sayes for example it links to Our Works
this as
either don't move or top
it's useful when doing onClicks, etc. when you don't want to user to go to
a different page
HTH
-Original Message-
From: Mantas Kriauciunas [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, April 23, 2002 5:17 PM
To: PHP General List
Subject: [PHP] Interesting Links, can
: Mantas Kriauciunas [mailto:[EMAIL PROTECTED]]
MT Sent: Tuesday, April 23, 2002 5:17 PM
MT To: PHP General List
MT Subject: [PHP] Interesting Links, can be not PHP
MT Hey PHP General List,
MT Well i have seen some strange links last few months earlyer i
MT didn't look at them because i
Hi guys, I hope someone out there can help me
I just ran into an interesting issue
Basically, I am working on a php-powered template which works
in two different languages (English and Ukrainian):
http://wwwkulchitskicom/btl/templatephp?lang=eng
When you go to this address (!in Netscape),
Vlad,
Try a href=$PHP_SELF?lang=ukrIMAGE/a
/bsh/
--
PHP General Mailing List (http://wwwphpnet/)
To unsubscribe, visit: http://wwwphpnet/unsubphp
Hi... I have an interesting problem I don't know which way to solve. So I'll
shoot it out to you guys and see what you might offer.
I have two databases, say X, and Y:
CREATE TABLE X(
Id int(11) NOT NULL auto_increment,
Dep_Date date,
Return_Date date,
Cat1_Status varchar(100),
Cat2_Status
It's obviously more effective to do it in MySQL, but you shouldn't have any real
processing problems even if you don't find an appropriate solution using MySQL
exclusively, because you'd have the two arrays ordered by MySQL, so all you'll
have to do would be something like
Hi Yoed,
mysql_query(SELECT Id, Dep_Date, Return_DateFROM X,Y WHERE Dep_Date LIKE
'%$SelectDate%' OR Return_Date LIKE '%$SelectDate%' ORDER BY Dep_Date);
Will give you a ton of errors, and I'm not very fimilar with JOIN and SQL
and how that works. My idea was to create two querys, but the
Hi,friend,
i registered login info while login using session_register
session_register(user,pw);
---
and during logout i have unregistered like following..
session_unregister(user,pw);
This is the warning i got after logout..
Warning: Wrong parameter count for
Original message
From: Balaji Ankem [EMAIL PROTECTED]
Date: Thu, Sep 20, 2001 at 01:11:59PM +0500
Message-ID: [EMAIL PROTECTED]
Subject: [PHP] interesting warning!!!
Hi,friend,
i registered login info while login using session_register
session_register(user,pw
PHP IDE for Linux Only
a.. Coffeecup Editor (the best IDE for PHP on Linux) PHP editor
b.. HTML/PHP editors Quanta
c.. HTML/PHP editors Blue Fish
d.. HTML editors AswEdit
On Windows
a.. PHP IDE and Editor PHP Coder and mirror
b.. Zend PHP IDE
c.. IDE for PHP scripting (Web browser)
Is there a way to store users input on *another* page (i use frames), in
hidden fields, then be able to update those hidden fields as the user goes
along, also, be able to extract that data when a user returns back to a
previous form?
I'm thinking of using this instead of Sessions or Cookies.
You can indeed do this in javascript. You need to put a FORM on the page in
the other frame and then access the data elements in that form with the
syntax
parent.frame[x].formname.elementname.value
or something along those lines.
This gets pretty ugly pretty quickly, IMO. Also, I think you
71 matches
Mail list logo