On 29 September 2011 23:28, PHProg php...@speedemessenger.com wrote:
Hello Richard,
Your suggestion worked perfectly.
... it works beautifully.
Now that's what I like to hear!
Glad to be of help.
--
Richard Quadling
Twitter : EE : Zend : PHPDoc
@RQuadling : e-e.com/M_248814.html :
On 29 September 2011 13:30, PHProg php...@speedemessenger.com wrote:
?php
if(!@copy('http://mydomain.com/files/
.$_POST['trakname'].','/.$_POST['dirname']./.$_POST['trakname'].'))
{
$errors= error_get_last();
echo COPY ERROR: .$errors['type'];
echo br /\n.$errors['message'];
}
On 29 Sep 2011 at 13:30, PHProg php...@speedemessenger.com wrote:
I'm trying to create a standard web form that will use a PHP script
to copy a file from one server to another.
[snip]
?php
if(!@copy('http://mydomain.com/files/.$_POST['trakname'].','/.$_POST['dirna
Hello Richard,
Your suggestion worked perfectly.
Basically, I just copied and pasted your example
and with a few, very minor adjustments, it works beautifully.
Many thanks for your help.
All the best.
At 08:43 AM Thursday 9/29/2011, Richard Quadling wrote:
On 29 September 2011 13:30,
Ashley Sheridan wrote:
On Thu, 2009-10-22 at 21:32 -0400, PJ wrote:
I have several input fields to update a book database. There seems to be
a conflict in the way tags and text are input through php/mysql and
phpMyAdmin. If I enter the data with phpMyAdmin the input fields in the
php page see
On Thu, 2009-10-22 at 21:32 -0400, PJ wrote:
I have several input fields to update a book database. There seems to be
a conflict in the way tags and text are input through php/mysql and
phpMyAdmin. If I enter the data with phpMyAdmin the input fields in the
php page see quotation marks
1.Probably that's because the function mysql_real_escape_string() is turned on.
You can check that in your php.ini configuration.
2. If you want to display them as you wanted, you can use stripcslashes() on
your output contents.
3. Maybe phpmyadmin automatically stripped that out.
And
1.
Ronald Wiplinger wrote:
I added just into a input field
19 enclosure
which was displayed from the database as:
19\ enclosure
That gives me some questions:
1. where the protecting slash comes from?
Probably magic_quotes_gpc
2. how can I get it away when I want to display that field?
1)
Save us a lot of grief and just use PHP built-in sessions until you
can prove them to not meet your needs.
On Sat, February 24, 2007 7:48 pm, benifactor wrote:
i would like your input on session vs cookies regarding login data
like usernames/passwords ect...
--
Some people have a gift link
On Sat, 2007-02-24 at 20:05 -0800, benifactor wrote:
as of right now, when the user logs in, i have a cookie storing username...
then on all of the pages i need data i have it query the database and using
the cookie data to retrieve user information.. is there a more secure way to
do this?
On Sat, 2007-02-24 at 17:48 -0800, benifactor wrote:
i would like your input on session vs cookies regarding login data like
usernames/passwords ect...
How are you differentiating sessions vs cookies? Sessions are often
implemented USING cookies. If you mean sessions using a session ID in
the
i would like your input on session vs cookies regarding login data
like usernames/passwords ect...
usernames/passwords ? Session yes, cookies no.
tedd
--
---
http://sperling.com http://ancientstones.com http://earthstones.com
--
PHP General Mailing List (http://www.php.net/)
To
as of right now, when the user logs in, i have a cookie storing username...
then on all of the pages i need data i have it query the database and using
the cookie data to retrieve user information.. is there a more secure way to
do this?
--
PHP General Mailing List (http://www.php.net/)
To
Warren Vail wrote:
I would be interested to know what might get past the
addslashes function that the mysql_escape_string function
catches.
I wrote an example to demonstrate this:
http://shiflett.org/archive/184
The theory behind this type of problem is pretty easy to understand - if
your
http://us3.php.net/manual/en/function.addslashes.php
Good luck,
Warren Vail
-Original Message-
From: João Cândido de Souza Neto [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 10, 2006 11:11 AM
To: php-general@lists.php.net
Subject: [PHP] INPUT
Hi everyone,
Excuse me by
João Cândido de Souza Neto wrote:
Hi everyone,
Excuse me by off-topic.
why; are you writing the app in ASP or something? ;-)
I´ve been a little trouble in showing data in html form.
e.g.: In a e-commerce my client have a Sony 29 TV that when i put it in a
input value, it seems just
Just happened to think of one other thing you might want to be aware of;
When a query behaves like this, your site is usually vulnerable to the Sql
Injection Hack. Basically this is where someone sticks an insert query
into one of your data form fields (quotes are involved), and the additional
Warren Vail wrote:
http://us3.php.net/manual/en/function.addslashes.php
adding a slash to a quote char that is part of an html tag's attribute's
value is not the correct way to encode the quote (actually it's not correct
anywhere in an html document) - although I wouldn't be surprised if it
Maas [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 10, 2006 11:31 AM
To: Warren Vail
Cc: 'João Cândido de Souza Neto'; php-general@lists.php.net
Subject: Re: [PHP] INPUT
Warren Vail wrote:
Just happened to think of one other thing you might want to
be aware
of;
When a query
Warren Vail wrote:
Just happened to think of one other thing you might want to be aware of;
When a query behaves like this, your site is usually vulnerable to the Sql
Injection Hack. Basically this is where someone sticks an insert query
into one of your data form fields (quotes are
question I would be interested to read about it too
:-)
Warren Vail
-Original Message-
From: Jochem Maas [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 10, 2006 11:31 AM
To: Warren Vail
Cc: 'João Cândido de Souza Neto'; php-general@lists.php.net
Subject: Re: [PHP] INPUT
On Thu, August 10, 2006 1:54 pm, Jochem Maas wrote:
Warren Vail wrote:
Many of the older PHP implementations don't have the
mysql_escape_string
function, if not addslashes should work
this is true.
I would be interested to know
what might get past the addslashes function that the
Richard Lynch wrote:
On Thu, August 10, 2006 1:54 pm, Jochem Maas wrote:
Warren Vail wrote:
Many of the older PHP implementations don't have the
mysql_escape_string
function, if not addslashes should work
this is true.
I would be interested to know
what might get past the addslashes
input type=text maxlength=300
I think the attribute is called maxlength but i'm not sure, oh well add the
maxlength attribute to your input tag to have a quick, clean
non-javascript-realiant solution
On 1/12/06, John Meyer [EMAIL PROTECTED] wrote:
Stut wrote:
Ok, you're clearly missing my
[snip]
I need to check that user input text is less than 300 characters long. How?
[/snip]
string length, it's in the manual.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
William Stokes wrote:
Hello,
I need to check that user input text is less than 300 characters long. How?
Thanks
-Will
Try with strlen:
http://php.net/strlen
Silvio
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
I need to check that user input text is less than 300 characters
long. How?
if (strlen($_POST['input']) 300) { ...
You may want to also apply trim() to the input text to get rid of
extraneous white space at the beginning and end of the input.
Larry
--
PHP General Mailing List
On Thu, 12 Jan 2006 16:56:43 +0200
William Stokes [EMAIL PROTECTED] wrote:
Hello,
I need to check that user input text is less than 300 characters
long. How?
if(strlen($UserInputText) 300){
echo(Too long);
}
See http://www.php.net/manual/en/print/function.strlen.php
Regards,
Hmm.. I didn't see anyone ask before or after the user clicks SUBMIT?
If it's before, then you should use javascript to check the form element prior
to submitting (you can check realtime with the onkeydown, onkeyup events...
check after a user moves off of the form element with onchange or
[EMAIL PROTECTED] wrote:
Hmm.. I didn't see anyone ask before or after the user clicks SUBMIT?
Probably because this is a PHP list and nothing that happens on the
client side is a) controllable by PHP or b) guaranteed. Whatever you do
on the client side you should always validate
[EMAIL PROTECTED] wrote:
I disagree... PHP frequently involves interacting with or outright using
alternative technologies to accomplish your goal. This includes HTML, XML,
databases, etc. To effectively use PHP you need to understand your options and
the pros/cons in using the other
Stut wrote:
Ok, you're clearly missing my point and while I don't want this to
degrade into the usual pissing contest I do feel I need to clarify
what I was saying.
I completely agree that in this case Javascript should be used to
provide the user with feedback as to how close to the limit
Ryan A wrote:
Hey,
Heres what I am doing, I have a form where a user can enter values and in
the form I have a FILE box so the
user can upload her pic, if she screws up anywhere (eg: putting an alphabet
in her date of birth) I send her back
to the form and her date of birth gets highlighted
clip
setting a VALUE=path/file but that
does not work.
/clip
As far as I know, you
can't set the initial values for 'file' inputs.
It's a security thing.
H, you're right,saw the same thing on google after digging a little
deeper, thanks mate.
Cheers,
Ryan
--
PHP General Mailing
Rajesh Batchu wrote:
Hi,
I have a page with SSL enables as below.
https://email.website.com/usrfolder/one.php
For this page, my customer is posting some XML data using a java output stream as below. ( pseudo code)
URL url = new URL(_url);
_httpsConnection=
Rajesh Batchu wrote
_outputStream.flush();
_outputStream.close();
// receive response
_inputStream = new DataInputStream(new BufferedInputStream(_httpsConnection.getInputStream()));
OT: if you close the outputstream from URLConnection you will not be
able to read
Asuming the content is generated by php, take a look at htmlentities().
http://php.net/htmlentities
- Frank
How do I get this to work? the input box is only showing
He said,
input type=text value=He said, How'm I gonna get this to work?,
with a
frown size=50
James Hicks
--
input type=text value=He said, \How'm I gonna get this to work?\, with
a
frown size=50
Warren Vail
-Original Message-
From: James E Hicks III [mailto:[EMAIL PROTECTED]
Sent: Tuesday, March 16, 2004 11:08 AM
To: [EMAIL PROTECTED]
Subject: [PHP] input type=text value=He said, How do I
James E Hicks III mailto:[EMAIL PROTECTED]
on Tuesday, March 16, 2004 11:08 AM said:
input type=text value=He said, How'm I gonna get this to work?,
with a frown size=50
i came across this same problem recently. http://php.net/htmlentities
becomes quot;
chris.
--
PHP General Mailing
[snip]
How do I get this to work? the input box is only showing
He said,
input type=text value=He said, How'm I gonna get this to work?,
with a
frown size=50
[/snip]
Escape the quotes.
input type=text value=He said, \How\'m I gonna get this to work?\,
with a
frown size=50
--
PHP General
[snip]
Escape the quotes.
[/snip]
How about addslashes() and stripslashes() ?
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
; James E Hicks III; [EMAIL PROTECTED]
Subject: RE: [PHP] input type=text value=He said, How do I get this
to work?, with a frown size=50
[snip]
Escape the quotes.
[/snip]
How about addslashes() and stripslashes() ?
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http
Vail, Warren mailto:[EMAIL PROTECTED]
on Tuesday, March 16, 2004 11:14 AM said:
input type=text value=He said, \How'm I gonna get this to
work?\, with a
frown size=50
escaping does not work.
chris.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit:
Replacing with quot; HTML entitiy may be enough.
For ex:
?
$value = str_replace(\, quot;, $value);
echo input type=\text\ value=\$value\;
?
Or input type=text value=?=$value ?
Good luck,
Hidayet Dogan
[EMAIL PROTECTED]
, Warren; James E Hicks III; [EMAIL PROTECTED]
Subject: RE: [PHP] input type=text value=He said, How do I get this
to work?, with a frown size=50
Vail, Warren mailto:[EMAIL PROTECTED]
on Tuesday, March 16, 2004 11:14 AM said:
input type=text value=He said, \How'm I gonna get this to
work
--- Vail, Warren [EMAIL PROTECTED] wrote:
Ahh, because it's raw html and not in php.
one choice would be to encapsulate it within php
input type=text value=?php echo He said, \How'm I gonna get
this to work?\, with a frown;? size=50
The problem with this is that PHP is server-side, so the
PROTECTED]
Subject: RE: [PHP] input type=text value=He said, How do I get this
t o work?, with a frown size=50
--- Vail, Warren [EMAIL PROTECTED] wrote:
Ahh, because it's raw html and not in php.
one choice would be to encapsulate it within php
input type=text value=?php echo He said, \How'm I
--- Pablo Gosse [EMAIL PROTECTED] wrote:
It's obviously best practice to rigorously check and validate all input
coming via $_GET or $_POST, but what about $_SESSION values?
Session data can be considered safe, but there are of course caveats. It
is not possible for the user to manipulate
Javascript is your answer.
Cheers,
-Ryan
We will slaughter you all! - The Iraqi (Dis)information ministers site
http://MrSahaf.com
- Original Message -
From: Bobpilly [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, September 12, 2003 11:20 AM
Subject: [PHP] input field masks
PHP is server side, it has nothing to do with client side, aside from
server up some information. You can, and should, validate the input
using PHP after it is submitted.
For client side validation you would need to use javascript. You can do
what you are trying to do in javascript, but it will
http://www.interactivetools.com/products/htmlarea/
this is not concerning php but javascript
-Mensaje original-
De: Todd Cary [mailto:[EMAIL PROTECTED]
Enviado el: domingo, 31 de agosto de 2003 21:18
Para: [EMAIL PROTECTED]
Asunto: [PHP] Input area allowing text formatting
I would like
Everything you need is here:
http://www.php.net/manual/en/features.file-upload.php#features.file-upload.post-method
John Taylor-Johnston wrote:
Instead of using fread, I want to upload a *.txt file using:
input type=file name=txt_file /
and display it in a textarea. Where do I go now?
show us code
- Original Message -
From: Dan Delaney [EMAIL PROTECTED]
To:
Sent: Tuesday, January 21, 2003 8:33 AM
Subject: [PHP] Input field array ends up as Array string
Hi every body. I have a form that was originally working just fine. It
had a series of input checkboxes with the
Rick Emery [EMAIL PROTECTED] wrote in message
024801c2c15b$1a770e70$0500a8c0@honeybee">news:024801c2c15b$1a770e70$0500a8c0@honeybee...
show us code
Learn how to quote. :)
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
On Tuesday 21 January 2003 22:33, Dan Delaney wrote:
Hi every body. I have a form that was originally working just fine. It
had a series of input checkboxes with the same name (interests[]).
These values then ended up in an array ($_POST['interests']), which I
then imploded into a comma
On Tuesday 21 January 2003 23:03, Jason Wong wrote:
Undo any configuration changes made recently, downgrade any recent upgrades
etc. To paraphrase Newtown's First Law of Motion:
Sorry, Newton's First Law of Motion :)
Any working system tends to remain in that state unless external force is
Well, in the process of pulling out some code into a sample page to
send to the list I found the problem. It was yesterday when someone who
was testing it told me about the problem, but the problem must have
been going on for a week, because a week ago I added code to a global
include script
INPUT TYPE = HIDDEN NAME = status[0] value = collapse
onclick = document.all['tree'].status[?=$i?].value='expand';
No matter what you do, JavaScript will *NEVER* accept the [ or ] character
as part of a field's NAME.
Those are RESERVED keys in JavaScript.
You'll have to refer to the INPUT by
?php
echo '
input name=inp type=hidden value='. $_POST['inp']. '
';
?
-Original Message-
From: John Gurley [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 13, 2002 6:55 AM
To: [EMAIL PROTECTED]
Subject: [PHP] input
hello,
Someone was kind enough to give me this code for sending a
the single quotes you use for your echo indicate that the variable in your
echoed string won't be parsed double quotes indicate that it will be
parsed...
e.g.
$test = 1
echo '$test' // prints: $test
echo $test // prints: 1
Greets,
Edward
hello,
Someone was kind enough to
On Wednesday 13 March 2002 20:54, John Gurley wrote:
hello,
Someone was kind enough to give me this code for sending a value from
one page to another, but it doesn't work. I wonder if anyone can see
anything wrong:
?php
echo '
input name=inp type=hidden value=', $_POST['inp'], '
';
: [PHP] input
the single quotes you use for your echo indicate that the variable in your
echoed string won't be parsed double quotes indicate that it will be
parsed...
e.g.
$test = 1
echo '$test' // prints: $test
echo $test // prints: 1
Greets,
Edward
hello,
Someone was kind
On Wednesday 13 March 2002 21:02, Edward van Bilderbeek - Bean IT wrote:
the single quotes you use for your echo indicate that the variable in your
echoed string won't be parsed double quotes indicate that it will be
parsed...
e.g.
$test = 1
echo '$test' // prints: $test
echo
On Wednesday 13 March 2002 21:07, Rick Emery wrote:
Nope, that's not the problem. the $_POST[] is NOT inside single-quotes.
The problem is he used commas before and after the $_POST[].
You can use commas to separate expressions when using echo. So that's not the
problem. AFAICS the code
Dear Philip,
Thank you very much,
I have lost long time proving different alternatives that it's better
not to implement. I prefer a safe code.
Thanks again!.
Cheers
Silvia Mahiques
Philip Olson [EMAIL PROTECTED] escribió en el mensaje
This is not possible. Default values cannot be set with type=file as if it
were it would be quite a security risk.A little more information on
the capability of this html form element:
http://www.blooberry.com/indexdot/html/tagpages/i/inputfile.htm
And a related RFC :
It is possible to utilize a VALUE attribute with a FILE type input
field. Even the specs at Blooberry list value as an attribute of the
input type=file field. I double-checked at w3c.org to make sure, though,
and found the information repeated there. I even checked my O'Reilly book
on
Hello Tamas,
Friday, August 17, 2001, 3:03:31 PM, you wrote:
TB Hi guys,
TB Is there any restriction on a multiple selectás name in an HTML file? Cos' If I
give a name like 'msel' and not 'msel[]' I don't get an array named $msel just a
simple string type variable.
TB Thanks in advance
If
ok. to anser my own questions. oi. type=image name=done then the var will
not be $done but $done_x and $done_y
--
Chris Lee
[EMAIL PROTECTED]
Chris Lee [EMAIL PROTECTED] wrote in message
9ehgvu$s2b$[EMAIL PROTECTED]">news:9ehgvu$s2b$[EMAIL PROTECTED]...
?php
echo
$done1br
ok Im having a hard time reading my own writing, the headers for both are
correct. what I didnt take 10sec to see was that done2 was not being sent,
done2.x and done2.y is being sent. oi.
?php
echo
$done1_x
$done1_y
$done2_x
$done2_y
form method='post'
an input tag of the type image cannot pass a name and value. therefore you
will have to use a script to detect if both the button and hidden are passed
or jsut the hidden. applying a hidden is helpful for this.
?php
if ($done1 $done2) {
$done2 = '';
}
echo
$done1 . 'br'.
$done2 . 'br
form
You need quotes around multi-word values in HTML.
INPUT NAME=foo VALUE=this is wrong
INPUT NAME=bar VALUE="This is right"
--
Visit the Zend Store at http://www.zend.com/store/
Wanna help me out? Like Music? Buy a CD: http://l-i-e.com/artists.htm
Volunteer a little time:
I'm using a variable!
input type="text" name="MyTextInput" value=?=$val ?
From: "Brad S. Jackson" [EMAIL PROTECTED]
To: "kaab kaoutar" [EMAIL PROTECTED]
Subject: Re: [PHP] input textfield value cat!
Date: Mon, 5 Mar 2001 10:08:21 -0600
Make sure
On Monday 05 March 2001 17:29, you wrote:
I'm using a variable!
input type="text" name="MyTextInput" value=?=$val ?
Well, you *still* need to have quotes around it:
input type="text" name="MyTextInput" value="?=$val ?"
Make sure you have quotes around the value.
input type="text"
On Mon, 5 Mar 2001, kaab kaoutar wrote:
I'm using a variable!
input type="text" name="MyTextInput" value=?=$val ?
Quote the value:
input type="text" name="MyTextInput" value=\"?=$val ?\"
Greets,
Batonik
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail:
to put it simply, you can't...
but you could put an input type of text with a link or a button next to it
manually, and then on the onClick of either this button or link open a
secondary window running a PHP script that reads a particular directory
structure with full navigation support. Then
, 2001 4:16 PM
To: [EMAIL PROTECTED]
Subject: RE: [PHP] input type=file
so then maybe, if I understand it correctly
(which may or may not be true) I could read
the contents or a directory and populate a
dropdown list...?
Jerry Lake- [EMAIL PROTECTED]
Web Designer
Europa Communications
, 3D, Graphics,
ColdFusion, PHP, and mySQL
http://www.wizaerd.com
=
-Original Message-
From: Jerry Lake [mailto:[EMAIL PROTECTED]]
Sent: Friday, February 16, 2001 5:16 PM
To: [EMAIL PROTECTED]
Subject: RE: [PHP] input type=file
so then maybe, if I
When a form is submitted from an image (e.g. input src="../images
/next1.gif" name="paging" type="image" value="pageforward" ) this
will be passed in the URL as paging.x=SOME_NUMBER. If I try and
access this variable as ${paging.x} in the subsequent PHP script
I get nothing. How can I
79 matches
Mail list logo