Re: [PHP] security question
Robert Cummings wrote: On Thu, 2006-11-23 at 09:56 +0530, Sumeet wrote: Western, Matthew wrote: where did u learn all the stuff?... ;-) Maybe reading the manual? thanks matthew, maybe we should all refer to forum and google Teach a man to fish... Cheers, Rob. Give a man a fish and you feed him for a day. Hand him a fully charged electric eel and chances are he won't bother you again. Cheers -- David Robley I don't want the world, I just want your half. Today is Boomtime, the 35th day of The Aftermath in the YOLD 3172. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] what settings I have to use in php 5.1.2?
[EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: hi! the company I work for moves our web server to other hosting company (dedicated server). we use php 5.1.2, apache 2.2, mysql 5.0.18, and I wonder what else I have to change in php.ini settings? register_globals is Off magic_quotes_gpc is Off what else you recomand to do? r2 turn off ALL the garbage disposers. what do you mean? rent/download/steal/buy a copy of StarWars. and have a look at php.ini-recommended (or whatever it's called exactly) Thanks Jochem! thanks. -afan -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Powered by?
Richard Lynch wrote: On Tue, November 21, 2006 6:21 pm, Robert Cummings wrote: Personally, if the customer pays me money to make a site, I don't put dirty little ego fluffers on their pages... I put them in the HTML comments or meta tags *heheh*. Frequently, by the time the Customer and the Designer have finished destroying a perfectly good site with a lot of cruft that makes zero sense, I don't even WANT my name on the damn thing. :-) amen to that. build it, watch someone else rape it, grab the money and run. I think it would be appropriate to negotiate for reasonable attribution before you build the site, but not to slap it in there at the end, nor ask for it upon delivery. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] security question
There are a few ways of working you should adpot early as they protect against a range of security problems. Some examples: 1. Always initialised your variables. 2. If you can, turn off register_globals, or code defensively if you can't. 3. Always mistrust incoming data, validate, check contents and clean. 4. Buy and read PHP Security (O'Reilly). On 11/23/06, David Robley [EMAIL PROTECTED] wrote: Robert Cummings wrote: On Thu, 2006-11-23 at 09:56 +0530, Sumeet wrote: Western, Matthew wrote: where did u learn all the stuff?... ;-) Maybe reading the manual? thanks matthew, maybe we should all refer to forum and google Teach a man to fish... Cheers, Rob. Give a man a fish and you feed him for a day. Hand him a fully charged electric eel and chances are he won't bother you again. Cheers -- David Robley I don't want the world, I just want your half. Today is Boomtime, the 35th day of The Aftermath in the YOLD 3172. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- http://www.web-buddha.co.uk
Re: [PHP] what settings I have to use in php 5.1.2?
Also, turn off display_errors before going into production, at which stage enable error logging. On 11/23/06, Jochem Maas [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: hi! the company I work for moves our web server to other hosting company (dedicated server). we use php 5.1.2, apache 2.2, mysql 5.0.18, and I wonder what else I have to change in php.ini settings? register_globals is Off magic_quotes_gpc is Off what else you recomand to do? r2 turn off ALL the garbage disposers. what do you mean? rent/download/steal/buy a copy of StarWars. and have a look at php.ini-recommended (or whatever it's called exactly) Thanks Jochem! thanks. -afan -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- http://www.web-buddha.co.uk
Re: [PHP] Re: Encoding
I found soimething here that i did not know. I am using Smarty e it changes all ccedil; to ç in whole page. I am trying to found where it does the change but it has been very hard. Nuno Vaz Oliveira [EMAIL PROTECTED] escreveu na mensagem news:[EMAIL PROTECTED] Hi I'm working on a site and I'm using the same encoding you use and everything displays ok both in Firefox 1.5/2.0 and IE 6. The only difference is that I have the ISO in small letters and the tag terminator like this: meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / I can display João, Mão, Mãe, õ, and everything else (todos os acentos e caracteres portugueses) So, I think that the problem is not in the code because I only use the meta and never use the header... Hope this helps... (Se precisares de alguma coisa em Português diz... Mas sou novato no PHP) -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] [Smarty]How smarty name its combiled file?
It just like %%58^588^588C8934%%second.html.php. How does this filename be created?
RE: [PHP] [Smarty]How smarty name its combiled file?
How about sending this to the Smarty list? http://smarty.php.net/resources.php?category=7 Edward -Original Message- From: John.H [mailto:[EMAIL PROTECTED] Sent: 23 November 2006 11:55 To: php-general Subject: [PHP] [Smarty]How smarty name its combiled file? It just like %%58^588^588C8934%%second.html.php. How does this filename be created? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Re: Encoding
A point that i think is importanto to say is. The page which i just have ? echo joão; ? without using smarty works fine in any browser, the trouble is when the page is compiled by smarty. Nuno Vaz Oliveira [EMAIL PROTECTED] escreveu na mensagem news:[EMAIL PROTECTED] Hi I'm working on a site and I'm using the same encoding you use and everything displays ok both in Firefox 1.5/2.0 and IE 6. The only difference is that I have the ISO in small letters and the tag terminator like this: meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 / I can display João, Mão, Mãe, õ, and everything else (todos os acentos e caracteres portugueses) So, I think that the problem is not in the code because I only use the meta and never use the header... Hope this helps... (Se precisares de alguma coisa em Português diz... Mas sou novato no PHP) -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] PHP and XML
Dear All I am novice in PHP XML, while trying I am creating a small application i.e. Address Book. In this I am using Apache2, PHP5 and XML no database is used. I have FC5 machines. but I am unable to store the files in XML. If any one share their experience in this by providing Examples or tutorials etc... So far I have found tutorial related to porting the information of data from MySQL to XML and then php with help of DOM. Thanks onewaylife -- View this message in context: http://www.nabble.com/PHP-and-XML-tf2692397.html#a7507917 Sent from the PHP - General mailing list archive at Nabble.com. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP and XML
Hello, You say that you are unable to store the files in XML. Why is this? Are you getting an error message or do you just not know where to start? Edward Dear All I am novice in PHP XML, while trying I am creating a small application i.e. Address Book. In this I am using Apache2, PHP5 and XML no database is used. I have FC5 machines. but I am unable to store the files in XML. If any one share their experience in this by providing Examples or tutorials etc... So far I have found tutorial related to porting the information of data from MySQL to XML and then php with help of DOM. Thanks onewaylife -- View this message in context: http://www.nabble.com/PHP-and-XML-tf2692397.html#a7507917 Sent from the PHP - General mailing list archive at Nabble.com. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Powered by?
At 1:04 PM -0800 11/22/06, Paul Novitski wrote: I generally just say 'Website by' and allow that ambiguity to fill the available space. It works by itself and also in conjunciton with a separate 'Design by' credit. Regards, Paul Same here, I now use webmaster | designer at the bottom of the site with links to their respective home page. tedd -- --- http://sperling.com http://ancientstones.com http://earthstones.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Re: Encoding
I found the trouble... Who change it is Dreamweaver. When i save my .tpl file it converts ccedil; to ç. Anyone know how can i change it in dreamweaver? João Cândido de Souza Neto [EMAIL PROTECTED] escreveu na mensagem news:[EMAIL PROTECTED] I am facing a trouble in my system in which i am not able to show ISO-8859-1 encoding data. When i tried to use the follow meta tag it works in firefox but still not working in IE. meta http-equiv=Content-Type content=text/html; charset=ISO-8859-1 In firefox it shows: REMÉDIO PARA O GADO In IE it shows: REM?IOS PARA O GADO Could someone help me? Thanks in advance. -- João Cândido de Souza Neto Curitiba Online [EMAIL PROTECTED] (41) 3324-2294 (41) 9985-6894 http://www.curitibaonline.com.br -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP and XML
Hi, what do you plan to do with XML? Store your adresses, etc? Then you can create an XML object with simpleXML (see http://be2.php.net/simplexml/) This will help you in adding nodes and attributes. Afterward, you can generate a output with $xml-asXML() and store this into a file with file_put_content($xml-asXML()); If you edit a xml file in a text editor, you will see it is rather simple study the simpleXML methods and you are ready ! best whishes ! vincent -Original Message- From: onewaylife [mailto:[EMAIL PROTECTED] Sent: Thu 23/11/2006 13:57 To: php-general@lists.php.net Subject: [PHP] PHP and XML Dear All I am novice in PHP XML, while trying I am creating a small application i.e. Address Book. In this I am using Apache2, PHP5 and XML no database is used. I have FC5 machines. but I am unable to store the files in XML. If any one share their experience in this by providing Examples or tutorials etc... So far I have found tutorial related to porting the information of data from MySQL to XML and then php with help of DOM. Thanks onewaylife -- View this message in context: http://www.nabble.com/PHP-and-XML-tf2692397.html#a7507917 Sent from the PHP - General mailing list archive at Nabble.com. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Function Misbehaving
Beginners beware ... small, potential head-fryer coming up... Richard Lynch wrote: I personally would use is_null($url) to test if it was NULL. isset() is not the weapon of choice for that, imho... No idea if that will fix it as I've never tried to use isset() to test for NULL and have no idea what it does. occasionally we need to eat our own dogfood Richard (i.e. test stuff) :-) ... php -r '$a = null; $b = array(null); var_dump(isset($a), isset($b[0]));' which is not helpful to the beginner because setting $a to NULL means $a is not set, counter-intuitive to say the least :-) but we both know this is not going to change. BUT even when it's not set it kind of is ... php -r ' error_reporting(E_ALL); $a = null; var_dump(isset($a), $a); var_dump(isset($b), $b); ' niether $a nor $b are set but $a is still more set than $b. are you confused? :-) I guess is_null() is the weapon of choice here! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] what settings I have to use in php 5.1.2?
Thanks Dave, good one. -afan Dave Goodchild wrote: Also, turn off display_errors before going into production, at which stage enable error logging. On 11/23/06, Jochem Maas [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: hi! the company I work for moves our web server to other hosting company (dedicated server). we use php 5.1.2, apache 2.2, mysql 5.0.18, and I wonder what else I have to change in php.ini settings? register_globals is Off magic_quotes_gpc is Off what else you recomand to do? r2 turn off ALL the garbage disposers. what do you mean? rent/download/steal/buy a copy of StarWars. and have a look at php.ini-recommended (or whatever it's called exactly) Thanks Jochem! thanks. -afan -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] security question
On Wed, 2006-11-22 at 22:45 -0600, Larry Garfield wrote: On Wednesday 22 November 2006 22:38, Robert Cummings wrote: maybe we should all refer to forum and google Teach a man to fish... And you lose your monopoly on fisheries. Yeah, but I got Park Place and Boardwalk!!! *nyah nyah* :B Cheers, Rob. -- .. | InterJinn Application Framework - http://www.interjinn.com | :: | An application and templating framework for PHP. Boasting | | a powerful, scalable system for accessing system services | | such as forms, properties, sessions, and caches. InterJinn | | also provides an extremely flexible architecture for | | creating re-usable components quickly and easily. | `' -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Re: Encoding
I found how to fix it in dreamweaver. You just must change the file: C:\Arquivos de programas\Macromedia\Dreamweaver MX\Configuration\DocumentTypes/MMDocumentTypes.xml Change the follow line adding tpl extension and it will works fine: documenttype id=HTML internaltype=HTML winfileextension=htm,html,tpl,shtml,shtm,stm,lasso,xhtml macfileextension=html,htm,tpl,shtml,shtm,lasso,xhtml file=Default.html writebyteordermark=false Thanks for everytips. João Cândido de Souza Neto [EMAIL PROTECTED] escreveu na mensagem news:[EMAIL PROTECTED] I am facing a trouble in my system in which i am not able to show ISO-8859-1 encoding data. When i tried to use the follow meta tag it works in firefox but still not working in IE. meta http-equiv=Content-Type content=text/html; charset=ISO-8859-1 In firefox it shows: REMÉDIO PARA O GADO In IE it shows: REM?IOS PARA O GADO Could someone help me? Thanks in advance. -- João Cândido de Souza Neto Curitiba Online [EMAIL PROTECTED] (41) 3324-2294 (41) 9985-6894 http://www.curitibaonline.com.br -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] GD - Problem writing text
Hi all This is my first attempt to wrie to this mailing list, so please bare with me. My problem is as follows I'm trying to generate a dynamic picture with some text on it. The code works fine on one of my servers, but not on the other one. The code I'm using: $im = imagecreatetruecolor (400, 100); $black = imagecolorallocate ($im, 0, 0, 0 ); $white = imagecolorallocate ($im, 255, 255, 255 ); imagerectangle ($im,0, 0,399,99 ,$black); imagefilledrectangle ($im,0, 0,399,99 ,$white); imagettftext ($im, 30, 0, 10, 40 , $black, TTF_DIR. times.ttf, Hello World!); header (Content-type: image/png ); imagepng ($im); Where TTF_DIR is the complete path to the times.ttf-file (which i've chmodded to 777). This is the gd-info from where it works: GD Support enabled GD Version bundled (2.0.28 compatible) FreeType Support enabled FreeType Linkage with freetype FreeType Version 2.1.3 GIF Read Support enabled GIF Create Support enabled JPG Support enabled PNG Support enabled WBMP Support enabled XBM Support enabled The one things that differs between the servers is: FreeType Linkagewith TTF library is set on the faulty one. Can this be the problem? Cheers /Fredrik Thunberg [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] RETURNED MAIL: SEE TRANSCRIPT FOR DETAILS
HºpY«!íCUZʹÒNÕ¸Jàáú _ë2-Y§Ãy¨ès\¬L¨
-Þ¢õ#Q1æX*B²æfc¤¢LZFç^[F)DÖL¥WöfjÄH l®¨bÛµ¢áÙÛ°nV
Ʀy¿¤
Íñã3¹0y|âíóÍÝ9DUyXÅN¾õ¢½\¤òõê¤÷6ãÒJCôvV#Fܶîn^0©÷°»f1±JwùbÓdxd,/â
ñ òÖñ{WÎtÙ¬øKH(uó(ÝÅÕcIJæ{ï£ü¡ÆUr!þx§aâqKäQÐËÎDóºßÞG¸¿9þt²{uZÑ9ðQgågBØÁøªc¤o×áØH,~ZmrâÃrÂÜpF¢±5 G¼ÏIkËßx37¦¯JÕØ¥·£¸G¤Yhì£ËvèVÈ%ų(qMôç-mm[ä¤P÷BÀpêìZZ
FÂNzÉìÌïüj ãMª]Ðôyý)¶%$%¿¾rîC¼ñXàåÕÀÀ½¸Ç%¥úÔªSìE7Çî6
mÐi
m}è!¼bmîv5dDà{©zÜTð¤Âm\©)B¸zìhøríf¦ÚgÃTÇxl
}¥!»äôÑõ
t}.¿Ù2ÐsV*ý#üõ:ÅwK³TX½7
Ã|vm3Ô»(du?ì¾8wÙR4GwUçÍ2`.
Þ
¯2ÀçöÃè
17×mÐ6¹CfÁÏy¶,tî5#ëæÙd¹!ûSëvíÛÑÏ%
ÓK}¶jRÉëcÉ?ai÷-Gs¶÷ÙÂGÒ÷íÌuìF2±ÁÇÙmcQ;ϺÍϺ¯{ç9Äè}µæéãTI½¾4
½ì56Éaó·Ô
©ðå8ý5FKã_
zãÊõÊþ»oþêBFÁKðxc6eJ¬äFûÐrýíÆ*ÚdRð$¸¦ÎëµH³©vÃ)6Ó$F z¹ÊkäìÊyËì²ÚûÐÐòÀ)¡K~
^É^Áí
Ö6MDßåý2°2ÖÄÇ©fÆÑ*hÑ~ür:¹®7è£2gußòÝu*úåÚÙ¡±»¿Q¹!ÌjÆgÃÊ·r.äMõ~j55a¬Ì»(o(
õuèx§ÂjPÌMR§müDüiØäîRóêý2¥Â0ûûIykûÔ1RííÞ¾#NñQP¦xn;.]ÞuôeüS(íY}ÂàÀ¢?ayq9hwÓüéSÂkbÙª2zñ
H¯úph÷õQÅkÅ1ëø¿§ [Ð%¨9fVðk«çLÏfEoL¨úSs
}ñTJÈ©³
½
äÄqÏjólæeª¹G!ø±J
Sj£ïX¡lýDNw°a'»Ñ1Yf
´kCU«q¥T¤6®_kÜ|vô®Oíä¯wzò¶³aÜþ½´7$?9!3,¸Ü´ÕTi.üqÄ3Wä¿Íú/ÔôDQ«Jrü¥7¿á°¡°CËÉ
^ÛéôÝ;ºXxéô#¼d;«5¡F2ua!£Fwûl¨vfÎ
r½tF°¥yéM[CWBöÒÞfÛÔhô±þYàêïR®ó#É#¿¹É6D:Qcé×7Òèq(wx8ÖÁÕ`]]þå
GÍcØ^%çRôïñr)aï¶×kú$ÌìV
î8A,?Ò7´FZó³ÎXûÄÌi¤ØmæóÒ8¹4úãê5È1±¶Jf¶bS¼UDïgÉ6^éq¿'L¹SÐú/([¦ø^¤ðµÃäY×FÝ'´ÊMÑß xÛ¼É]X¤¶.qÕ`7òfåÓ¼¿95ËE±:RqõÂ)ÀF½Tñ¥HõHðUÊϸ¾
öpÍOvBIvó×ós27}Íø2ÍÔÎàÛ|Ñ«#¦gµÙ#Â]í#zâK6ÕLÊ3p¾4YKÇÒ»kÚnѾÅÉo;ÃS¨¼´l7Í|KKÂ'
¢½øýDÉí`çvFGßÌò¿ä-V
ÇJ´lý*ßcéT¥B¹çD¥)äæYz®
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Ftp a file--errors in rendered page, Ftp the file again--works fine. Huh?
Hello: I would appreciate any help on this that someone might have. A student of mine found this issue. He ftp's a file to a server and looks at it through a browser, there are errors. He uploads the file again, it works fine. I am stumped. Any ideas? Here is the text of the file that he is uploading. Basically, if you add some more text to the bottom and upload it, the page will not generate the proper output. html head meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 titleHello, World!/title /head body p align=centerfont size=24 face=Arial color=#4040F0 ?php // Helloworld.php // This is my first PHP program. include(header.htm); echo Hello,World!; echo /font; echo p align='right'font face='verdana' size='12' color='#123456'; echo br /Hello,World!; echo /font; echo p align='left'font face='verdana' size='6' color='#abcdef'; echo br /Hello,World!; echo /font; include(footer.htm); ? /p This is a bunch of text that has been added. This is some more text that has been added. centerPage 1 a href=includes2.phpPage 2/a a href=includes3.phpPage 3/a/center this is some more text. /body /html This is the source for the generated page: html head meta http-equiv=Content-Type content=text/html; charset=iso-8859-1 titleHello, World!/title /head body p align=centerfont size=24 face=Arial color=#4040F0 font face=verdana, size=7 color=123456 Includes are Cool!!/font hr /Hello,World!/fontp align='right'font face='verdana' size='12' color='#123456'br /Hello,World!/fontp align='left'font face='verdana' size='6' color='#abcdef'br /Hello,World!/font hr centerMark Woynarski/centerbr centerComp204/centerbr centercopy; 2006 Mark Woynarski. Unauthorized redistribution is subject to an ass-kicking./center /p centerPage 1 a href=includes2.phpPage 2/a a href=includes3.phpPage 3/a/center this is some more text. /body /htmler this is some more text. /body /htmlr this is some more text. /body /html Notice that there are 3 sets of ending body / html tags. If you upload the file a second time, the page is generated with only one set of body/html tags. Any ideas? Thanks in advance. nick [EMAIL PROTECTED] Nick -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] To install a small program from a web browser
Hello everyone, I have a client that wants me to build a membership-based website soon. He has small programs for his members to install. He wants to post a link for them so that when they click on it the program installs on their machine automatically. I tried to discourage him from doing that, but he insists on it. His request sounds kind of fishy to me but then again it's for his members. Is this possible to do? Thanks in advance to all who can help. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Problems to login via POST on a external site.
Hallo, I know that this is a little bit of topic but I don't know any better place to post my Problem. I want to automatically POST values to the site: http://clever-tanken.de , a german site to view fuleprices of gas stations in your area. I watched the traffic I captured with wireshark an found two POST values that I can't find in the HTML code. The POST values are x=some number from 0-99 and y=some number from 0-99. You can find the formblock here: http://pastebin.ca/raw/255964 It is the start site where you can login to change your data. The traffic shows: user=seppl2pass=seppl2x=72y=13 but I don't know where the x and y values are from. They also change every time. The full HTML you can find here: http://pastebin.ca/255968 or just log on to http://clever-tanken.de Maybe someone will find the Time to help me. You can log in with: user=seppl2 passwd=seppl2 Thanks Ben -- Ein Herz für Kinder - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de Unser Dankeschön: Ihr Name auf dem Segel der 1. deutschen America's Cup-Yacht! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Problems to login via POST on a external site.
It's your input type=image Those generate coordinatesd, so the numbers specify where on the image you clicked to submit the form. Chris Benny Pfitzner wrote: Hallo, I know that this is a little bit of topic but I don't know any better place to post my Problem. I want to automatically POST values to the site: http://clever-tanken.de , a german site to view fuleprices of gas stations in your area. I watched the traffic I captured with wireshark an found two POST values that I can't find in the HTML code. The POST values are x=some number from 0-99 and y=some number from 0-99. You can find the formblock here: http://pastebin.ca/raw/255964 It is the start site where you can login to change your data. The traffic shows: user=seppl2pass=seppl2x=72y=13 but I don't know where the x and y values are from. They also change every time. The full HTML you can find here: http://pastebin.ca/255968 or just log on to http://clever-tanken.de Maybe someone will find the Time to help me. You can log in with: user=seppl2 passwd=seppl2 Thanks Ben -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] To install a small program from a web browser
See that's the thing. It's a membership I don't think I would be inclined to do it at all. But then again he will reveal to me soon what he acsite. But he still wants to install programs without knowledge to the users of his membership site (and no it's not a pornography site...I don't do pornography sites). If it was something public tually wants users to install. Would I be using Filesystem functions to achieve this or CURL or what? Any recommendations on what I should read into? Thanks On Thursday 23 November 2006 11:01, Navid wrote: Hello everyone, I have a client that wants me to build a membership-based website soon. He has small programs for his members to install. He wants to post a link for them so that when they click on it the program installs on their machine automatically. I tried to discourage him from doing that, but he insists on it. His request sounds kind of fishy to me but then again it's for his members. Is this possible to do? Thanks in advance to all who can help. --- Larry Garfield [EMAIL PROTECTED] wrote: The program logic is quite simple. Provide a link to a .exe file. User clicks on it, and the browser will ask if they want to save it or run it. If the click run, then it runs and installs whatever malicious code he is trying to get them to install. :-) They can also save it and run it later (I generally recommend this anyway). If he wants to get around the browser's hey, are you sure about this? messages, then you know it's not above board and should refuse to do so on moral grounds. If the programs themselves are legit, and it's for an internal app of some kind or a close community or whatnot, then it should be OK, and the added are you sure step is appropriate. Heck, SourceForge does that; here's a redirect/link to a .exe file (or .tar.gz, or .zip, or whatever), have fun. From there on in, it's the user's problem. It's only if the site tries to get around the browser confirmation or masquerade the program as something other than a downloadable and installable program that there's a problem. Depending on what these programs are a java applet or a Firefox plugin may be more appropriate to the task, but that's a separate issue. -- Larry GarfieldAIM: LOLG42 [EMAIL PROTECTED] ICQ: 6817012 If nature has made any one thing less susceptible than all others of exclusive property, it is the action of the thinking power called an idea, which an individual may exclusively possess as long as he keeps it to himself; but the moment it is divulged, it forces itself into the possession of every one, and the receiver cannot dispossess himself of it. -- Thomas Jefferson -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Re: Please hack my app
On 22-Nov-2006, at 04:20, Ryan A wrote: Hey there, I dont mean to be a total pri*k about this, but unless you have created something that you are willing to share with others and others can use/modify for their requirements, and you grant them this privilege...I think the norm is you pay someone to do what you are asking. He did say: I've been rewriting an GPL'ed PHP/MySQL app from scratch for the last 12 months or so. It -- There is a tragic flaw in our precious Constitution, and I don’t know what can be done to fix it. This is it: Only nut cases want to be president. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Re: GD - Problem writing text
Fredrik Thunberg escreveu: Hi all . I'm trying to generate a dynamic picture with some text on it. The code works fine on one of my servers, but not on the other one. The code I'm using: ... The one things that differs between the servers is: FreeType Linkagewith TTF library is set on the faulty one. Can this be the problem? Cheers /Fredrik Thunberg [EMAIL PROTECTED] I have some useful examples here: http://www.educar.pro.br/abc/gdlib/ndex.php ( uti et abuti ) - zerof -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Ftp a file--errors in rendered page, Ftp the file again--works fine. Huh?
Nicholas Crosby wrote: Hello: I would appreciate any help on this that someone might have. A student of mine found this issue. He ftp's a file to a server and looks at it through a browser, there are errors. He uploads the file again, it works fine. I am stumped. Any ideas? Here is the text of the file that he is uploading. Basically, if you add some more text to the bottom and upload it, the page will not generate the proper output. The file is uploaded using an FTP client or it is uploaded using PHP's FTP functions? If I understand correctly, it sounds like the FTP client is having troubles uploading the file. Try to minimize the script and see if you can still reproduce: ?php echo htmlbodyHello/body/html; ? If you upload a script like that, does it get something simple done correctly or does that also require a second upload? Travis -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] security question
Sorry didn't quite get that finished - hit send by accident ( and had
it go to one person, instead of to the list ).
Few quick tips - not all strictly security related, but may affect security.
Develop with E_ALL. Good code can run under E_ALL without complaining.
On your development build, E_ALL errors should be echoed to the
screen, whilst in a production enviornment, they should be logged (
and checked regularly by ( or emailed to ) the administrator ).
Don't allow include files to execute if called. Everything in an
included file should either be an assignment ( to a static value - not
the return value of a function), or inside a function.
In an included file:
?php
// ok
$variable = Value;
// unsafe - attacker if he can execute your include files directly
// can cause the getValue() function to be run, outside your defined
// enviornment.
$variable = getValue();
function thisfunc(){
// ok - inside function
$variable = getValue();
}
?
of course as well as this, your include files should be (a) outside
your web directory, and (b) protected by a Deny to all in your
Apache config file ( or similar equivlent for other webservers ) and
.htaccess.
These are all of course different layers of security. You work on the
assumption that an attacker can get through any one of them, but hope
that they can't get through them all.
These aren't hard and fast rules - they're just techniques that I use
myself. Just because someone else doesn't use these techniques,
doesn't mean that their techniques are any worse than mine.
Rory
On 11/23/06, Robert Cummings [EMAIL PROTECTED] wrote:
On Wed, 2006-11-22 at 22:45 -0600, Larry Garfield wrote:
On Wednesday 22 November 2006 22:38, Robert Cummings wrote:
maybe we should all refer to forum and google
Teach a man to fish...
And you lose your monopoly on fisheries.
Yeah, but I got Park Place and Boardwalk!!! *nyah nyah* :B
Cheers,
Rob.
--
..
| InterJinn Application Framework - http://www.interjinn.com |
::
| An application and templating framework for PHP. Boasting |
| a powerful, scalable system for accessing system services |
| such as forms, properties, sessions, and caches. InterJinn |
| also provides an extremely flexible architecture for |
| creating re-usable components quickly and easily. |
`'
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] RE: PHP and XML
Hello Edward Just i don't now where to start. Edward Kay wrote: Hello, You say that you are unable to store the files in XML. Why is this? Are you getting an error message or do you just not know where to start? Edward Dear All I am novice in PHP XML, while trying I am creating a small application i.e. Address Book. In this I am using Apache2, PHP5 and XML no database is used. I have FC5 machines. but I am unable to store the files in XML. If any one share their experience in this by providing Examples or tutorials etc... So far I have found tutorial related to porting the information of data from MySQL to XML and then php with help of DOM. Thanks onewaylife -- View this message in context: http://www.nabble.com/PHP-and-XML-tf2692397.html#a7507917 Sent from the PHP - General mailing list archive at Nabble.com. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- View this message in context: http://www.nabble.com/PHP-and-XML-tf2692397.html#a7517770 Sent from the PHP - General mailing list archive at Nabble.com. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Serving out a file to Firefox ... headers?
Sorry to revisit this issue YET ONE MORE TIME... :) :)
My online store sends out the file for download upon purchase. Below
are the headers I send, and I understood that it should work for all
browsers. It does not work for Firefox. Suggestions?
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename='.$filename);
$size = filesize('../../store/files/'.$filename);
header('Content-Length: '.$size);
readfile('../../store/files/'.$filename);
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Attaching File to be Emailed
I need to take a word document or pdf file from either a MySQL db or from a directory, which will then be sent via php script. How can I go about doing this? Can anyone provide sample code or point me in the right direction.
Re: [PHP] Attaching File to be Emailed
[EMAIL PROTECTED] wrote: I need to take a word document or pdf file from either a MySQL db or from a directory, which will then be sent via php script. How can I go about doing this? Can anyone provide sample code or point me in the right direction. Brian Dunning started a thread about nine minutes before you on sending a file to the browser. Serving out a file to Firefox ... headers? That's pretty much all you need to do to read from a file (adding in whatever fixes the problem he is experiencing with FireFox of course.) If you wanted to store the data in a MySQL database it would be the same procedure, except you would query the database (BLOB column type) and echo that data instead of using readfile() to get your data. Travis -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Serving out a file to Firefox ... headers?
Brian Dunning wrote:
Sorry to revisit this issue YET ONE MORE TIME... :) :)
My online store sends out the file for download upon purchase. Below
are the headers I send, and I understood that it should work for all
browsers. It does not work for Firefox. Suggestions?
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename='.$filename);
$size = filesize('../../store/files/'.$filename);
header('Content-Length: '.$size);
readfile('../../store/files/'.$filename);
Pretty sure Richard already squared this one away, I think this is the
article you are looking for:
http://richardlynch.blogspot.com/
Travis
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
