Hey Rich,
> > http://www.php.net/ini_set
> > http://www.php.net/manual/en/ini.php#ini.list
>
> If it's on, and you have no access to change it, get
> a new webhost.
> :-)
Unfortunatly cant do that :-(
Heres my environment, I am one of two developers, 3
designers, 2 graphic artists and a bunch
On Wed, June 28, 2006 11:52 am, Jay Blanchard wrote:
> [snip]
>> 1. Turn magic_quotes OFF -- it's just a PITA anyway.
>
> if magic_quotes_gpc is on in the php.ini and you don;t have the
> access to change this then you have a problem if your code doesn't do
> something to counter it.
> [/snip]
>
>
On Wed, June 28, 2006 4:29 am, Ryan A wrote:
> I am doing this as I am putting the entire content of
> a html page into the DB and the double quotes are
> screwing things up for me.
...
> Or if I am barking up the wrong tree
Fix your DB insert to handle the double quotes.
I don't really know, or
At 6:40 PM +0200 6/28/06, Jochem Maas wrote:
>
> > 3. Then use htmlentities() to retrieve the pages.
>
>grand. so then he'll have stuff like '>body<'
>probably not what he wants - granted you can use regular expressions
>to change all the content *between* the tags he actually wants to
>output whic
Jay Blanchard wrote:
> [snip]
>> 1. Turn magic_quotes OFF -- it's just a PITA anyway.
>
> if magic_quotes_gpc is on in the php.ini and you don;t have the
> access to change this then you have a problem if your code doesn't do
> something to counter it.
> [/snip]
by the time your script can call a
[snip]
> 1. Turn magic_quotes OFF -- it's just a PITA anyway.
if magic_quotes_gpc is on in the php.ini and you don;t have the
access to change this then you have a problem if your code doesn't do
something to counter it.
[/snip]
http://www.php.net/ini_set
http://www.php.net/manual/en/ini.php#ini.
tedd wrote:
> At 2:29 AM -0700 6/28/06, Ryan A wrote:
>> -snip-
>>
>> Or if I am barking up the wrong tree and this is not
>> possible (changing DWs default behavior, just tell me
>> and will stop searching.
>>
>> Thanks!
>> Ryan
>
> Ryan:
>
> I don't see a problem with using:
>
> 1. Turn magic_
At 9:16 AM -0500 6/28/06, Jay Blanchard wrote:
>[snip]
>> Just how does one launch a "DOS" attack?
>[/snip]
>
>Insult Bill Gates.
Hey, give Bill a break -- after all, if it weren't for him, our lives would be
a lot simpler.
Maybe he'll do the same thing for medical research with his charity dona
> Ryan:
>
> I don't see a problem with using:
>
> 1. Turn magic_quotes OFF -- it's just a PITA anyway.
True
> 2. Then use mysql_real_escape_string() to store your
> html in the dB.
>
> 3. Then use htmlentities() to retrieve the pages.
Thanks!
Ryan
--
- The faulty interface lies be
At 2:29 AM -0700 6/28/06, Ryan A wrote:
>-snip-
>
>Or if I am barking up the wrong tree and this is not
>possible (changing DWs default behavior, just tell me
>and will stop searching.
>
>Thanks!
>Ryan
Ryan:
I don't see a problem with using:
1. Turn magic_quotes OFF -- it's just a PITA anyway.
[snip]
> Just how does one launch a "DOS" attack?
[/snip]
Insult Bill Gates.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Ryan A wrote:
Just how does one launch a "DOS" attack?
c:\ fdisk
c:\ format
Repeat as needed
?
--
Damn John,
now anybody who wants to start DDOSing knows the
secret.
Well then, they still have some research to do for launching a DoS attack.
--
John C. Nichel IV
Programmer/System
> Just how does one launch a "DOS" attack?
>
> c:\ fdisk
> c:\ format
> Repeat as needed
>
> ?
>
> --
Damn John,
now anybody who wants to start DDOSing knows the
secret.
--
- The faulty interface lies between the chair and the keyboard.
- Creativity is great, but plagiarism is fa
Ryan A wrote:
Hey,
Am really starting to like your emails on this
list,
its different to say the least!
seeing as you didn't threat to DoS my server I guess
I'm
not trying hard enough to be different ;-)
Oops, sorry about that, let me try again:
You , how dare you say that, I
am now going
> Change the default in Dream Weaver? Can you be
> sure that all people
> now and in the future who will be entering data into
> your db will be
> using your 'modified' version of Dream Weaver?
> Forget Dream Weaver, and
> worry about the input datanever trust user
> input.
Makes sense
Thanks Jay, will stop searching and use the advise
from Prathaban and Jochem.
Thread closed as far as I'm concerned.
Cheers!
Ryan
--
- The faulty interface lies between the chair and the keyboard.
- Creativity is great, but plagiarism is faster!
- Smile, everyone loves a moron. :-)
__
Hey,
> > Am really starting to like your emails on this
> list,
> > its different to say the least!
>
> seeing as you didn't threat to DoS my server I guess
> I'm
> not trying hard enough to be different ;-)
Oops, sorry about that, let me try again:
You , how dare you say that, I
am now going t
Ryan A wrote:
--- Prathaban Mookiah <[EMAIL PROTECTED]> wrote:
Are you trying to use PHP to write the HTML onto a
database. If this is the
case you can simply use addslashes(). This way you
can still preserve the
double quotes, but write into the database without
any problems.
Either way s
[snip]
By default dreamweaver outputs tags like this:
[/snip]
This is the proper format for an HTML tag, all attributes should be
double quoted.
[snip]
Or if I am barking up the wrong tree and this is not
possible (changing DWs default behavior, just tell me
and will stop searching.
[/snip]
I
Ryan A wrote:
> Hey,
> Am really starting to like your emails on this list,
> its different to say the least!
seeing as you didn't threat to DoS my server I guess I'm
not trying hard enough to be different ;-)
>
>>> mysql_escape_string does look interesting but
>> thats
>>> again putting the str
Hey,
Am really starting to like your emails on this list,
its different to say the least!
> > mysql_escape_string does look interesting but
> thats
> > again putting the strain in the script which I am
>
> wtf? that is just plain silly.
Why is it plain silly? if the text to be entered is a
large
Ryan A wrote:
>
...
> mysql_escape_string does look interesting but thats
> again putting the strain in the script which I am
wtf? that is just plain silly.
btw if you read the following manual page:
http://php.net/mysql_escape_string
it will tell you that that func is depreciated -
--- Prathaban Mookiah <[EMAIL PROTECTED]> wrote:
> Yes, I got into trouble with magic quotes recently
> too.
>
> Well I know that you can do the same thing with
> mysql_escape_string if you are
> using MySQL.
>
> But if you are very peculiar about doing it in DW
> and so not want the script
Are you trying to use PHP to write the HTML onto a database. If this is the
case you can simply use addslashes(). This way you can still preserve the
double quotes, but write into the database without any problems.
Either way some processing will be involved at some point. So I guess there is
n
mailing
list.
Good luck.
Prathap
-- Original Message ---
From: Ryan A <[EMAIL PROTECTED]>
To: Prathaban Mookiah <[EMAIL PROTECTED]>, php php <[EMAIL PROTECTED]
net>
Sent: Wed, 28 Jun 2006 03:10:27 -0700 (PDT)
Subject: Re: [PHP] Single quotes verses double quote
--- Prathaban Mookiah <[EMAIL PROTECTED]> wrote:
> Are you trying to use PHP to write the HTML onto a
> database. If this is the
> case you can simply use addslashes(). This way you
> can still preserve the
> double quotes, but write into the database without
> any problems.
>
> Either way so
26 matches
Mail list logo