Re: [PHP] How to extract php source code from joomla

[richard gray]

On 23/07/2013 16:54, Yoinier Hernandez Nieves wrote:

El 22/07/13 15:49, elk dolk escribió:
Thank you for the quick response ! What I am trying to do : I have to 
complete two university projects for


  my professor !

project One  : Make an online shop and must use the following 
components in it



Shopping cart, Catalog of products, payment gateway , user login and 
user activity log .


You can use Prestashop, Magento, Oscommerce, etc, and modify at you're 
needed.
IMO do NOT use Oscommerce (or the ZenCart fork for that matter) ... 
unless you want a lesson in how not to write an application in PHP... 
the code and architecture is (well it was the last time I had the 
dubious pleasure of working with it...) truly awful


Rich

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to extract php source code from joomla

[Yoinier Hernandez Nieves]

El 22/07/13 15:49, elk dolk escribió:

Thank you for the quick response ! What I am trying to do : I have to complete 
two university projects for

  my professor !

project One  : Make an online shop and must use the following components in it


Shopping cart, Catalog of products, payment gateway , user login and user 
activity log .

You can use Prestashop, Magento, Oscommerce, etc, and modify at you're 
needed.


project Two : Implementing of a B2B sell-side portal with negotiation mechanism.


You can modify above softwares to this purpose.

Thanks

As I am familiar with php and My.SQL and I have only 20 days to complete those 
projects !  I thought it's
(...)

Thanks,
Ash
http://www.ashleysheridan.co.uk




--
_.___.  .__
\__  |   |  |__| ___  __    __
 /   |   |/\|  |/ __ \  \/ // __ \ /  ___/
 \   |   |  \  \  ___/\   /\  ___/ \___ \
 / __|___|  /__|\___  >\_/  \___  >  >
 \/   \/\/  \/ \/
.___  __   ___  __
  __| _/_/  |_ \  \   _/  |_
 / __ |/  _ \   __\/   |   \_/ __ \   __\
/ /_/ (  <_> )  | /|\  ___/|  |
\ |\/|__| \|__  /\___  >__|
 \/   \/ \/

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: How to extract php source code from joomla

[Tedd Sperling]

On Jul 23, 2013, at 12:15 AM, elk dolk  wrote:

> I study for MSc degree at university.
> 
>  Are you in an advanced class?

Ok, congratulations -- you are studying for an MSc -- but that didn't answer 
the question.

So, let me repeat the question:

[1] "Are you in an advanced PHP class?"

[2] "Or is this just an introductory class?"


If [1], then the coursework might be understandable, but still very difficult.

If [2], that is far more than what I teach as an "Introduction to PHP" course.


tedd

_
tedd.sperl...@gmail.com
http://sperling.com

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] How to extract php source code from joomla

[elk dolk]

I study for MSc degree at university.




 Are you in an advanced class?

Re: [PHP] How to extract php source code from joomla

[Tedd Sperling]

On Jul 22, 2013, at 3:49 PM, elk dolk  wrote:
> Thank you for the quick response ! What I am trying to do : I have to 
> complete two university projects for
> 
>  my professor !
> 
> project One  : Make an online shop and must use the following components in 
> it 
> 
> 
> Shopping cart, Catalog of products, payment gateway , user login and user 
> activity log .
> 
> 
> project Two : Implementing of a B2B sell-side portal with negotiation 
> mechanism.
> 
> As I am familiar with php and My.SQL and I have only 20 days to complete 
> those projects !  I thought it's 
> 
> better to use Joomla I'll be grateful if you can give me an advice 
> 
> 
> thank you
> 

Sounds more like a client than someone who teaches php.

I couldn't do that from scratch in 20 days and I teach php at college level. 
That's more than my entire 16 weeks course of introductory php. Are you in an 
advanced class?

tedd

_
tedd.sperl...@gmail.com
http://sperling.com

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to extract php source code from joomla

[Ashley Sheridan]

On Mon, 2013-07-22 at 13:10 -0700, elk dolk wrote:

> I am allowed to use tools or code by hand , it does not matter ,the professor 
> wants to have the source code.
> 
> 
> 
> 


You say tools, but would he consider a full-blown complex CMS as merely
a tool, or not? At this point, I agree, your best option is probably a
CMS with plugins, because 20 days is not much time to build that sort of
thing, and that's coming from someone who develops in PHP for a living.

Thanks,
Ash
http://www.ashleysheridan.co.uk

[PHP] How to extract php source code from joomla

[elk dolk]

I am allowed to use tools or code by hand , it does not matter ,the professor 
wants to have the source code.

Re: [PHP] How to extract php source code from joomla

[Ashley Sheridan]

On Mon, 2013-07-22 at 12:49 -0700, elk dolk wrote:

> Thank you for the quick response ! What I am trying to do : I have to 
> complete two university projects for
> 
>  my professor !
> 
> project One  : Make an online shop and must use the following components in 
> it 
> 
> 
> Shopping cart, Catalog of products, payment gateway , user login and user 
> activity log .
> 
> 
> project Two : Implementing of a B2B sell-side portal with negotiation 
> mechanism.
> 
> As I am familiar with php and My.SQL and I have only 20 days to complete 
> those projects !  I thought it's 
> 
> better to use Joomla I'll be grateful if you can give me an advice 
> 
> 
> thank you
> 
> 
> - Forwarded Message -
> From: Ashley Sheridan 
> To: elk dolk  
> Cc: "php-general@lists.php.net"  
> Sent: Monday, July 22, 2013 11:45 PM
> Subject: Re: [PHP] How to extract php source code from joomla
>  
> 
> On Mon, 2013-07-22 at 12:18 -0700, elk dolk wrote:
> 
> > Hi all,
> > I want to build a website using Joomla 2.5 . It should have 5 pages:
> > 
> > index.php
> > pageOne.php
> > pageTwo.php
> > ...
> > 
> > How can I get the php source code for those pages?
> > 
> > I installed joomla 2.5 on my windows box and use XAMPP's appache web server 
> > thanks
> 
> 
> Erm, Joomla is a CMS, which means that you don't have source code for
> individual pages like that. If you want, you don't have to get involved
> with the PHP at all in Joomla. What is it that you're actually trying to
> achieve?
> 
> Thanks,
> Ash
> http://www.ashleysheridan.co.uk


20 days seems awfully ambitious, does your professor expect you to code
these by hand or are you allowed to use an existing CMS, I ask because
your original question seemed a bit odd.

For e-commerce you're better off choosing a CMS which does that out of
the box. Joomla has plugins that allow you to do these things, but it
can be a hefty CMS, and it's not particularly suited for shops, plus it
has a bit of a learning curve and some large security holes (which I
know first hand having had to just get a Joomla site to pass a rigorous
security test)

Lastly, please try not to top post :)

Thanks,
Ash
http://www.ashleysheridan.co.uk

[PHP] How to extract php source code from joomla

[elk dolk]

Thank you for the quick response ! What I am trying to do : I have to complete 
two university projects for

 my professor !

project One  : Make an online shop and must use the following components in it 


Shopping cart, Catalog of products, payment gateway , user login and user 
activity log .


project Two : Implementing of a B2B sell-side portal with negotiation mechanism.

As I am familiar with php and My.SQL and I have only 20 days to complete those 
projects !  I thought it's 

better to use Joomla I'll be grateful if you can give me an advice 


thank you


- Forwarded Message -
From: Ashley Sheridan 
To: elk dolk  
Cc: "php-general@lists.php.net"  
Sent: Monday, July 22, 2013 11:45 PM
Subject: Re: [PHP] How to extract php source code from joomla
 

On Mon, 2013-07-22 at 12:18 -0700, elk dolk wrote:

> Hi all,
> I want to build a website using Joomla 2.5 . It should have 5 pages:
> 
> index.php
> pageOne.php
> pageTwo.php
> ...
> 
> How can I get the php source code for those pages?
> 
> I installed joomla 2.5 on my windows box and use XAMPP's appache web server 
> thanks


Erm, Joomla is a CMS, which means that you don't have source code for
individual pages like that. If you want, you don't have to get involved
with the PHP at all in Joomla. What is it that you're actually trying to
achieve?

Thanks,
Ash
http://www.ashleysheridan.co.uk

Re: [PHP] How to extract php source code from joomla

[Ashley Sheridan]

On Mon, 2013-07-22 at 12:18 -0700, elk dolk wrote:

> Hi all,
> I want to build a website using Joomla 2.5 . It should have 5 pages:
> 
> index.php
> pageOne.php
> pageTwo.php
> ...
> 
> How can I get the php source code for those pages?
> 
> I installed joomla 2.5 on my windows box and use XAMPP's appache web server 
> thanks


Erm, Joomla is a CMS, which means that you don't have source code for
individual pages like that. If you want, you don't have to get involved
with the PHP at all in Joomla. What is it that you're actually trying to
achieve?

Thanks,
Ash
http://www.ashleysheridan.co.uk

[PHP] How to extract php source code from joomla

[elk dolk]

Hi all,
I want to build a website using Joomla 2.5 . It should have 5 pages:

index.php
pageOne.php
pageTwo.php
...

How can I get the php source code for those pages?

I installed joomla 2.5 on my windows box and use XAMPP's appache web server 
thanks

Re: [PHP] Source code of original PHP release.

[chris]

Thank you Sir.
Just what I needed :)
I didn't even know there was a museum.

Cheers,
Christopher Tombleson

On 2013-05-24 05:02, Daniel Brown wrote:
On Thu, May 23, 2013 at 2:16 AM, chris  
wrote:

I'm currently writing a paper on the evolution of PHP and web
development/security as a whole.
One of the things I want to incorporate is snippets of source code 
to show

how things have grown and advanced since the 90's

If anyone could help me out I would be much appreciated. All my 
attempts of

trying to find it have turned up nothing :(


Everything you want (and more) regarding that is in the Museum:

http://museum.php.net/

--

Network Infrastructure Manager
http://www.php.net/



--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code of original PHP release.

[Daniel Brown]

On Thu, May 23, 2013 at 2:16 AM, chris  wrote:
> I'm currently writing a paper on the evolution of PHP and web
> development/security as a whole.
> One of the things I want to incorporate is snippets of source code to show
> how things have grown and advanced since the 90's
>
> If anyone could help me out I would be much appreciated. All my attempts of
> trying to find it have turned up nothing :(

Everything you want (and more) regarding that is in the Museum:

http://museum.php.net/

--

Network Infrastructure Manager
http://www.php.net/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code of original PHP release.

[Serge Fonville]

Hi,

Have you looked at http://php.net/manual/en/history.php.php?

Could you also share some information on what you have already, as to
prevent we would provide information you already have?

HTH

Kind regards/met vriendelijke groet,

Serge Fonville

http://www.sergefonville.nl

Convince Microsoft!
They need to add TRUNCATE PARTITION in SQL Server
https://connect.microsoft.com/SQLServer/feedback/details/417926/truncate-partition-of-partitioned-table


2013/5/23 chris 

> I'm currently writing a paper on the evolution of PHP and web
> development/security as a whole.
> One of the things I want to incorporate is snippets of source code to show
> how things have grown and advanced since the 90's
>
> If anyone could help me out I would be much appreciated. All my attempts
> of trying to find it have turned up nothing :(
>
> Cheers,
> Christopher Tombleson
> ---
> Github: https://github.com/chtombleson
> Blog: http://blog.cribznetwork.com
> Website: http://cribznetwork.com
> Ohloh: 
> https://www.ohloh.net/**accounts/chtombleson/
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

[PHP] Source code of original PHP release.

[chris]

I'm currently writing a paper on the evolution of PHP and web 
development/security as a whole.
One of the things I want to incorporate is snippets of source code to 
show how things have grown and advanced since the 90's


If anyone could help me out I would be much appreciated. All my 
attempts of trying to find it have turned up nothing :(


Cheers,
Christopher Tombleson
---
Github: https://github.com/chtombleson
Blog: http://blog.cribznetwork.com
Website: http://cribznetwork.com
Ohloh: https://www.ohloh.net/accounts/chtombleson/


--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code Analysis

[Dee Ayy]

On Wed, Oct 22, 2008 at 4:30 PM, Dee Ayy wrote:
> Thanks regarding the error_reporting.  I may have to go this route for
> this specific issue.
> ...
> ...  And not only for this specific issue.

I have another need for a SCA tool.
Is there an existing tool similar to a broken link checker, but
instead of looking for links, it would look for "include" and
"require" type commands and list a hierarchy of all files used in the
project, starting from a given input file?

It should get a list of files used in a production deployment
beginning from say "index.php", and compare that to a list of files
used in a project undergoing development from say "index_dev.php"?  At
a minimum, (from what I can think of), it would have to resolve
define's that may be referenced in "include/require" as well as links
as in a broken link checker tool.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code Analysis

[Dee Ayy]

Thanks regarding the error_reporting.  I may have to go this route for
this specific issue.

I was hoping a source code analyzer would report the same type
problem, perhaps much faster than Robert's method, and without having
a human attempt to test all functionality of the various PHP apps on
old servers.  I'm looking for automated methods where automated test
cases do not already exist.  And not only for this specific issue.

Also, I'm only assuming that finding uninitialized variables would
address this specific problem.  A SCA may test for problems I have not
considered.

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code Analysis

[Ashley Sheridan]

On Wed, 2008-10-22 at 11:16 -0700, Jim Lucas wrote:
> Dee Ayy wrote:
> > Is there a tool that can analyze PHP source code and detect if the
> > code is relying on register_globals still being on?  Perhaps detecting
> > if a variable has not been initialized within the code?
> > 
> > These are my specific needs, but I'm also interested in general SCA
> > tools and features.
> > 
> 
> Sure, turn on error_reporting(E_ALL);
> and let the errors flow
> 
> I would do this in a .htaccess file
> 
> php_value error_reporting E_ALL
> php_flag display_errors On
> 
> You should now see all the errors being displayed to the screen.  If this is
> less then ideal, you could leave off the display_errors part and check your
> php log file instead.
> 
> Some people will probably suggest using something like xdebug  I personally
> have never used a debugging tool, except for the version that Robert talks
> about.  Works great and never has to be reconfigured or setup more then 
> once... :)
> 
> -- 
> Jim Lucas
> 
>"Some men are born to greatness, some achieve greatness,
>and some have greatness thrust upon them."
> 
> Twelfth Night, Act II, Scene V
> by William Shakespeare
> 
> 
I've heard that PHPDebug isn't that bad these days now as well, but I've
never used it before. Also, if possible, you could try to compile the
PHP code (again, not sure how you do this, but I've heard it's possible,
to get the OP codes) and see what happens.


Ash
www.ashleysheridan.co.uk


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code Analysis

[Greg Bowser]

 >Perhaps detecting
>if a variable has not been initialized within the code

This is an E_NOTICE level error.



[EMAIL PROTECTED] ~ $ php test.php
Notice: Undefined variable: foo in /home/mario/test.php on line 3

Re: [PHP] Source Code Analysis

[Jim Lucas]

Dee Ayy wrote:
> Is there a tool that can analyze PHP source code and detect if the
> code is relying on register_globals still being on?  Perhaps detecting
> if a variable has not been initialized within the code?
> 
> These are my specific needs, but I'm also interested in general SCA
> tools and features.
> 

Sure, turn on error_reporting(E_ALL);
and let the errors flow

I would do this in a .htaccess file

php_value error_reporting E_ALL
php_flag display_errors On

You should now see all the errors being displayed to the screen.  If this is
less then ideal, you could leave off the display_errors part and check your
php log file instead.

Some people will probably suggest using something like xdebug  I personally
have never used a debugging tool, except for the version that Robert talks
about.  Works great and never has to be reconfigured or setup more then once... 
:)

-- 
Jim Lucas

   "Some men are born to greatness, some achieve greatness,
   and some have greatness thrust upon them."

Twelfth Night, Act II, Scene V
by William Shakespeare


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code Analysis

[Nathan Rixham]

Robert Cummings wrote:

On Wed, 2008-10-22 at 12:24 -0500, Dee Ayy wrote:

Is there a tool that can analyze PHP source code and detect if the
code is relying on register_globals still being on?  Perhaps detecting
if a variable has not been initialized within the code?

These are my specific needs, but I'm also interested in general SCA
tools and features.


Yes, it's in my head.

Cheers,
Rob.


wanna email me a copy please?

--
nathan ( [EMAIL PROTECTED] )
{
  Senior Web Developer
  php + java + flex + xmpp + xml + ecmascript
  web development edinburgh | http://kraya.co.uk/
}

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code Analysis

[Robert Cummings]

On Wed, 2008-10-22 at 12:24 -0500, Dee Ayy wrote:
> Is there a tool that can analyze PHP source code and detect if the
> code is relying on register_globals still being on?  Perhaps detecting
> if a variable has not been initialized within the code?
> 
> These are my specific needs, but I'm also interested in general SCA
> tools and features.

Yes, it's in my head.

Cheers,
Rob.
-- 
http://www.interjinn.com
Application and Templating Framework for PHP


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Source Code Analysis

[Dee Ayy]

Is there a tool that can analyze PHP source code and detect if the
code is relying on register_globals still being on?  Perhaps detecting
if a variable has not been initialized within the code?

These are my specific needs, but I'm also interested in general SCA
tools and features.

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] PHP Source code protection

[Richard Lynch]

On Thu, February 7, 2008 8:35 pm, Andrés Robinet wrote:
> 1 - I believe the fact that we don't "encode" (read "compile") our
> scripts is
> tightly related to the fact that we don't have a bytecode interpreter
> (say JIT
> compiler or something?) bundled into PHP.

Er.

PHP has a bytecode interpreter in the Zend Engine...

That's kinda what it *does*

It's not a JIT, however, at this time, though there's always talk on
internals@ about making it more and more JIT-like.

The various caching mechanisms (Zend Cache Accelerator, APC, etc) all
store the bytecode version of the PHP script, not the original source.

This provides a TINY performance benefit, which is completely dwarfed
by not hitting the hard disk to read the PHP script, and costs almost
nothing since it's basically the difference between this psuedo C
code:

.
.
.
script = fread(fp, 10);
cache(script);
bytecode = parse(script);
.
.
.

and this:
.
.
.
script = fread(fp, 10);
bytecode = parse(script);
cache(bytecode);
.
.
.

You can rely on the bytecode interpreter being there, as that's what
the Zend Engine *is*.

This does not necessarily make your other points invalid -- but they
cannot be based around the [incorrect] facts you stated. :-)

-- 
Some people have a "gift" link here.
Know what I want?
I want you to buy a CD from some indie artist.
http://cdbaby.com/from/lynch
Yeah, I get a buck. So?

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Greg Donald]

On 2/7/08, Daniel Brown <[EMAIL PROTECTED]> wrote:
> Because who's to say you're selling to one client?  If it's your
> Intellectual Property, wouldn't you want to protect it, at least as
> much as possible?

No, I think protecting software in any way is a waste if resources,
especially software you plan to sell to someone.  Prohibiting the
buyer from making changes to software they purchased has zero gains
for anyone involved.

If I did want to protect some software I wrote, and I was willing to
pay money to do so, I would want to use something much more capable
than the Zend Encoder.  In principle I'd at least want something that
costs less than it's equivalent decoder.


-- 
Greg Donald
http://destiney.com/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Richard Heyes]

> accept the fact that it may get pirated.

It may do. But there's nothing wrong with making it as hard as possible 
to do so. Most people have better things to do than try to reverse 
engineer a piece of code.


Consider:

1. People who buy code will generally do so to solve a problem that they
   have in the process of making money.
2. Reverse engineering takes time, and therefore diverts their attention
   away from the process of making money.


--
Richard Heyes
http://www.websupportsolutions.co.uk

Knowledge Base and Helpdesk software for £299 hosted for you -
no installation, no maintenance, new features automatic and free

 ** New Helpdesk demo now available **

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Per Jessen]

Casey wrote:

> 
> Why not just translate it to C#?

Personally I'd just go for C - that way I can just distribute a binary
and be done with it.  No runtime, no JVM, no mono etc. 


/Per Jessen, Zürich

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Per Jessen]

Greg Donald wrote:

> Deductive reasoning leads to two possible options:
> 
> 1) Don't give the code to anyone.
> 2) Give the code to the client and accept the fact that it may get
> pirated.

Yep, that's all there is to it.  


/Per Jessen, Zürich

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] PHP Source code protection

[Andrés Robinet]

> -Original Message-
> From: Daniel Brown [mailto:[EMAIL PROTECTED]
> Sent: Thursday, February 07, 2008 7:10 PM
> To: Greg Donald
> Cc: php-general@lists.php.net
> Subject: Re: [PHP] PHP Source code protection
> 
> On Feb 7, 2008 6:20 PM, Greg Donald <[EMAIL PROTECTED]> wrote:
> > On 2/7/08, Daniel Brown <[EMAIL PROTECTED]> wrote:
> > > Actually, Greg, I respectfully disagree.  First, just because
> > > there may be ways to reverse-engineer things doesn't mean it's a bad
> > > idea to attempt to protect your code against such.
> >
> > Why would you encode to start with?  The only reason I can think of is
> > because you don't trust your client.  So why are you doing business
> > with people you don't trust?
> 
> Because who's to say you're selling to one client?  If it's your
> Intellectual Property, wouldn't you want to protect it, at least as
> much as possible?
> 
> > > I know that people
> > > can smash in the windows of my Durango and steal my equipment, but I
> > > still lock it when I park it and go into the store.  Why?  Because I
> > > don't want to make things easy enough for someone to be tempted to
> > > take something.  I know that if they want something badly enough,
> > > they'll take it but I'm just not going to make it that easy.
> >
> > That's my whole point.  Honest people aren't gonna steal your code
> > anyway.  Trying to prevent them from making a simple change when
> > you're not around is pointless.
> 
> No, but it does allow for a better contract stating something
> along the lines of, "in order to maintain a valid warranty, all
> updates must be done by Company XYZ, at a fee of $n."  However, I'll
> agree to the point that, if you're selling something once-off to a
> client, then it's ludicrous to encode the software.  However, it still
> doesn't make the practice of encoding "pointless."
> 
> > Would you have bought that Durango if the hood had been welded shut?
> > I'm guessing you're not a mechanic, so you'll _never_ need to raise
> > the hood, right?  What about when you come out of the grocery store
> > and there's a hot blonde who needs a jump because she forgot and left
> > her lights on before she went in?
> 
> That's like comparing apples to vaginas.  There's no similarity
> between the two unless you *really* look for it and make a lot of
> concessions.  I may never need to look under the hood, but a qualified
> mechanic - as so designated in the vehicle owner's manual, contract,
> and warranty specifications (relate this to my first paragraph) - will
> need access to the engine compartment.  In my case, it would be the
> dealer --- who is employed by the manufacturer of the code --- err,
> car.  ;-P
> 
> And if that hot blonde is there, I'll ask first if she likes apples.
> 
> 
> > > And if Zend considered it "pointless", they probably would no
> > > longer attempt to further develop - nor put their name on the line to
> >
> > Oh please, Zend isn't the first company to ever create useless
> > software.  Creation, in no way, proves usefulness.
> 
> Exactly.  Humankind is a perfect example.  Nonetheless, now you're
> going on a separate tangent.
> 
> > > sell - the product line.  By definition, pointless means
> >
> > I know where dictionary.com is, thanks  :)
> 
> Cool.  I wasn't sure, because I thought you'd have used it prior
> to using the term "pointless" incorrectly.  ;-P (Note: my smartass
> remarks are only joking around, I'm not attacking you in any way.  I
> just really enjoy a debate.)
> 
> > > It also keeps script kiddies from typing "decode php" into Google
> > > and being able to pull one over.
> >
> > I fail to see how Zend adding "decode" into their list of Google
> > Adwords keeps script kiddies from doing anything.  I used the Google
> > Adwords example as confirmation Zend is well aware of existing
> > decoders.
> 
> Yes, and I used the same phrase for searching as an example of for
> what even a low-level "cracker" would first search.  It doesn't mean
> that Zend is or isn't aware of the existence.  So this part, to me,
> seems baseless and unrelated to the overall discussion, but feel free
> to re-explain if my brain isn't grabbing hold properly.
> 
> > > While industry standards may not be
> > > the lock that cannot be pick

Re: [PHP] PHP Source code protection

[Daniel Brown]

On Feb 7, 2008 6:20 PM, Greg Donald <[EMAIL PROTECTED]> wrote:
> On 2/7/08, Daniel Brown <[EMAIL PROTECTED]> wrote:
> > Actually, Greg, I respectfully disagree.  First, just because
> > there may be ways to reverse-engineer things doesn't mean it's a bad
> > idea to attempt to protect your code against such.
>
> Why would you encode to start with?  The only reason I can think of is
> because you don't trust your client.  So why are you doing business
> with people you don't trust?

Because who's to say you're selling to one client?  If it's your
Intellectual Property, wouldn't you want to protect it, at least as
much as possible?

> > I know that people
> > can smash in the windows of my Durango and steal my equipment, but I
> > still lock it when I park it and go into the store.  Why?  Because I
> > don't want to make things easy enough for someone to be tempted to
> > take something.  I know that if they want something badly enough,
> > they'll take it but I'm just not going to make it that easy.
>
> That's my whole point.  Honest people aren't gonna steal your code
> anyway.  Trying to prevent them from making a simple change when
> you're not around is pointless.

No, but it does allow for a better contract stating something
along the lines of, "in order to maintain a valid warranty, all
updates must be done by Company XYZ, at a fee of $n."  However, I'll
agree to the point that, if you're selling something once-off to a
client, then it's ludicrous to encode the software.  However, it still
doesn't make the practice of encoding "pointless."

> Would you have bought that Durango if the hood had been welded shut?
> I'm guessing you're not a mechanic, so you'll _never_ need to raise
> the hood, right?  What about when you come out of the grocery store
> and there's a hot blonde who needs a jump because she forgot and left
> her lights on before she went in?

That's like comparing apples to vaginas.  There's no similarity
between the two unless you *really* look for it and make a lot of
concessions.  I may never need to look under the hood, but a qualified
mechanic - as so designated in the vehicle owner's manual, contract,
and warranty specifications (relate this to my first paragraph) - will
need access to the engine compartment.  In my case, it would be the
dealer --- who is employed by the manufacturer of the code --- err,
car.  ;-P

And if that hot blonde is there, I'll ask first if she likes apples.


> > And if Zend considered it "pointless", they probably would no
> > longer attempt to further develop - nor put their name on the line to
>
> Oh please, Zend isn't the first company to ever create useless
> software.  Creation, in no way, proves usefulness.

Exactly.  Humankind is a perfect example.  Nonetheless, now you're
going on a separate tangent.

> > sell - the product line.  By definition, pointless means
>
> I know where dictionary.com is, thanks  :)

Cool.  I wasn't sure, because I thought you'd have used it prior
to using the term "pointless" incorrectly.  ;-P (Note: my smartass
remarks are only joking around, I'm not attacking you in any way.  I
just really enjoy a debate.)

> > It also keeps script kiddies from typing "decode php" into Google
> > and being able to pull one over.
>
> I fail to see how Zend adding "decode" into their list of Google
> Adwords keeps script kiddies from doing anything.  I used the Google
> Adwords example as confirmation Zend is well aware of existing
> decoders.

Yes, and I used the same phrase for searching as an example of for
what even a low-level "cracker" would first search.  It doesn't mean
that Zend is or isn't aware of the existence.  So this part, to me,
seems baseless and unrelated to the overall discussion, but feel free
to re-explain if my brain isn't grabbing hold properly.

> > While industry standards may not be
> > the lock that cannot be picked, proprietary obfuscation will keep
> > people who don't know what they're doing out of your code --- and if
>
> If you're paid to write code then write code, and then when you're
> done give them the code and collect your money.  They paid for the
> code so why do you think you still own rights to it?

Again, I agree wholeheartedly, save for two situations:
1.) Multiple customers, such as an off-the-shelf script being sold.
2.) Contract retention.  While the document should legally
protect your interests, your adding *A BENEFIT* to your product for
the client: deniability.  If a huge bug is discovered in your scripts
that costs the client $10,000, they can turn around and say, "well, we
didn't touch the code because we couldn't, so the bug was already
there."  However, with that risk comes the benefit of being granted
exclusive contracts for continued support on the scripts.

> > they possess the acumen and free time to be able to reverse-engineer
> > the code themselves, I honestly don't know why they'd pay someone to
> > develop the application 

Re: [PHP] PHP Source code protection

[Greg Donald]

On 2/7/08, Daniel Brown <[EMAIL PROTECTED]> wrote:
> Actually, Greg, I respectfully disagree.  First, just because
> there may be ways to reverse-engineer things doesn't mean it's a bad
> idea to attempt to protect your code against such.

Why would you encode to start with?  The only reason I can think of is
because you don't trust your client.  So why are you doing business
with people you don't trust?

> I know that people
> can smash in the windows of my Durango and steal my equipment, but I
> still lock it when I park it and go into the store.  Why?  Because I
> don't want to make things easy enough for someone to be tempted to
> take something.  I know that if they want something badly enough,
> they'll take it but I'm just not going to make it that easy.

That's my whole point.  Honest people aren't gonna steal your code
anyway.  Trying to prevent them from making a simple change when
you're not around is pointless.

Would you have bought that Durango if the hood had been welded shut?
I'm guessing you're not a mechanic, so you'll _never_ need to raise
the hood, right?  What about when you come out of the grocery store
and there's a hot blonde who needs a jump because she forgot and left
her lights on before she went in?

> And if Zend considered it "pointless", they probably would no
> longer attempt to further develop - nor put their name on the line to

Oh please, Zend isn't the first company to ever create useless
software.  Creation, in no way, proves usefulness.

> sell - the product line.  By definition, pointless means

I know where dictionary.com is, thanks  :)

> It also keeps script kiddies from typing "decode php" into Google
> and being able to pull one over.

I fail to see how Zend adding "decode" into their list of Google
Adwords keeps script kiddies from doing anything.  I used the Google
Adwords example as confirmation Zend is well aware of existing
decoders.

> While industry standards may not be
> the lock that cannot be picked, proprietary obfuscation will keep
> people who don't know what they're doing out of your code --- and if

If you're paid to write code then write code, and then when you're
done give them the code and collect your money.  They paid for the
code so why do you think you still own rights to it?

> they possess the acumen and free time to be able to reverse-engineer
> the code themselves, I honestly don't know why they'd pay someone to
> develop the application in PHP for them in the first place.

I honestly don't know where you find clients so dumb that they who
would put up with not getting full source code for a paid project.


-- 
Greg Donald
http://destiney.com/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Daniel Brown]

On Feb 7, 2008 4:56 PM, Greg Donald <[EMAIL PROTECTED]> wrote:
> On 2/7/08, Richard Heyes <[EMAIL PROTECTED]> wrote:
> > > http://www.phprecovery.com/
> >
> > Pointless? I think it is exactly the answer to the original persons
> > question.
>
> Yup, it's the exact correct answer, to a pointless question.
>
> Even Zend knows it's pointless to encode PHP.  When you type "decode
> php" into Google you see ads for the Zend Encoder.  Does that tell you
> anything?

Actually, Greg, I respectfully disagree.  First, just because
there may be ways to reverse-engineer things doesn't mean it's a bad
idea to attempt to protect your code against such.  I know that people
can smash in the windows of my Durango and steal my equipment, but I
still lock it when I park it and go into the store.  Why?  Because I
don't want to make things easy enough for someone to be tempted to
take something.  I know that if they want something badly enough,
they'll take it but I'm just not going to make it that easy.

And if Zend considered it "pointless", they probably would no
longer attempt to further develop - nor put their name on the line to
sell - the product line.  By definition, pointless means "Lacking
meaning; senseless.  Ineffectual: pointless attempts to rescue the
victims of the raging fire."[1]  I fail to see the correlation here;
Zend is aware that there are ways to decode their method of
obfuscation (any and all are trivial, really), but admitting defeat is
failure in this case.  That, in my opinion, is pointless.

> Encoding PHP, or licensing it, or compiling it to an extension, or any
> other silly obfuscation ideas you come up with, in the end, only keeps
> an honest person honest.  If someone wants to reverse code that you
> have put in their possession, they will find a way.

It also keeps script kiddies from typing "decode php" into Google
and being able to pull one over.  While industry standards may not be
the lock that cannot be picked, proprietary obfuscation will keep
people who don't know what they're doing out of your code --- and if
they possess the acumen and free time to be able to reverse-engineer
the code themselves, I honestly don't know why they'd pay someone to
develop the application in PHP for them in the first place.

> Deductive reasoning leads to two possible options:
>
> 1) Don't give the code to anyone.
> 2) Give the code to the client and accept the fact that it may get pirated.

I completely agree with you here.  I'll also add the same thing I
always tell people when they ask me about security: any time there is
a way to connect to a device over the wire or otherwise, the data will
never be secure.

That stands for ASP (Application Service Providers, in this case -
the only *decent* ASP there is! ;-P) as well.



[1] - http://www.answers.com/pointless&r=67

-- 


Daniel P. Brown
Senior Unix Geek


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Greg Donald]

On 2/7/08, Richard Heyes <[EMAIL PROTECTED]> wrote:
> > http://www.phprecovery.com/
>
> Pointless? I think it is exactly the answer to the original persons
> question.

Yup, it's the exact correct answer, to a pointless question.

Even Zend knows it's pointless to encode PHP.  When you type "decode
php" into Google you see ads for the Zend Encoder.  Does that tell you
anything?

Encoding PHP, or licensing it, or compiling it to an extension, or any
other silly obfuscation ideas you come up with, in the end, only keeps
an honest person honest.  If someone wants to reverse code that you
have put in their possession, they will find a way.

Deductive reasoning leads to two possible options:

1) Don't give the code to anyone.
2) Give the code to the client and accept the fact that it may get pirated.


-- 
Greg Donald
http://destiney.com/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Casey]

On Feb 7, 2008 1:50 AM, Richard Heyes <[EMAIL PROTECTED]> wrote:
> Greg Donald wrote:
> > On 2/6/08, Richard Heyes <[EMAIL PROTECTED]> wrote:
> >> There's the Zend Encoder at www.zend.com. Though it may be called
> >> something else now.
> >
> > Pointless.
> >
> > http://www.phprecovery.com/
>
> Pointless? I think it is exactly the answer to the original persons
> question.
>
> --
> Richard Heyes
> http://www.websupportsolutions.co.uk
>
> Knowledge Base and Helpdesk software for £299 hosted for you -
> no installation, no maintenance, new features automatic and free
>

Why not just translate it to C#?

-- 
-Casey

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Richard Heyes]

Greg Donald wrote:

On 2/6/08, Richard Heyes <[EMAIL PROTECTED]> wrote:

There's the Zend Encoder at www.zend.com. Though it may be called
something else now.


Pointless.

http://www.phprecovery.com/


Pointless? I think it is exactly the answer to the original persons 
question.


--
Richard Heyes
http://www.websupportsolutions.co.uk

Knowledge Base and Helpdesk software for £299 hosted for you -
no installation, no maintenance, new features automatic and free

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Per Jessen]

Richard Lynch wrote:

> After you get your PHP code all worked out, re-write it as a custom
> PHP extension -- or even just the core of it, and send them a .so or
> .dll to install.

Interesting option.  Does require more effort, but if you rewrite the
whole thing in C, you might gain some performance too.  Of course, once
you've done that, you might even leave PHP out of it, and just run it
as a binary. 



/Per Jessen, Zürich

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Per Jessen]

John Taylor-Johnston wrote:

> I'm not sure where PHP stands on this politically. But I believe in
> Open Source, which allows you to encode your code. But why? At heart
> I'm a purist GNU. Stallman was right when he first tried to fix a
> faulty printer.

I too believe in Open Source, but there are times when the only way to
protect your competitive advantage is to hide your code.  


/Per Jessen, Zürich

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[John Taylor-Johnston]

I'm not sure where PHP stands on this politically. But I believe in Open 
Source, which allows you to encode your code. But why? At heart I'm a 
purist GNU. Stallman was right when he first tried to fix a faulty printer.


*  The freedom to run the program, for any purpose (freedom 0).
* The freedom to study how the program works, and adapt it to your 
needs (freedom 1). Access to the source code is a precondition for this.
* The freedom to redistribute copies so you can help your neighbor 
(freedom 2).
* The freedom to improve the program, and release your improvements 
to the public, so that the whole community benefits (freedom 3). Access 
to the source code is a precondition for this.


Thankfully there is little that cannot be reversed engineered. If you 
want to keep the recipe, host it yourself and let others use an interface.


This is stepping in a nest of hornets. :p

C.R.Vegelin wrote:

See also:
http://www.ioncube.com/


- Original Message - From: "Bastien Koert" <[EMAIL PROTECTED]>
To: "Zoran Bogdanov" <[EMAIL PROTECTED]>; 
Sent: Wednesday, February 06, 2008 2:27 PM
Subject: RE: [PHP] PHP Source code protection



zend encoder?
http://sourceforge.net/projects/php-screw/


google for more



bastien> To: php-general@lists.php.net> From: [EMAIL PROTECTED]> 
Date: Wed, 6 Feb 2008 12:28:12 +0100> Subject: [PHP] PHP Source code 
protection> > Hi,> > I'm building a C# application that connects to a 
server that has PHP scripts > on it.> > We need to deliver the complete 
solution to a firm, the C# is no problem > because it is compiled...> > 
But PHP is a problem bacause it is interpreted and we will have to 
deliver > pure, unprotected script...> > Is htere a way to secoure my 
code so when they put it on the server, they > can't see it!> > Thank 
You! > > -- > PHP General Mailing List (http://www.php.net/)> To 
unsubscribe, visit: http://www.php.net/unsub.php>

_


--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Roadsend (was Re: PHP Source code protection)

[Bruce Cowin]

>>> zerof <[EMAIL PROTECTED]> 7/02/2008 12:04 p.m. >>>

Try Roadsend, now as Open Source:

http://www.roadsend.com/home/index.php?SMC=1&pageID=compiler 


Hey, that looks cool.  Do many people use this?  Has anyone built any
standalone GUI apps with it?





Regards,

Bruce

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: PHP Source code protection

[zerof]

Zoran Bogdanov escreveu:

Hi,

I'm building a C# application that connects to a server that has PHP scripts 
on it.


We need to deliver the complete solution to a firm, the C# is no problem 
because it is compiled...


But PHP is a problem bacause it is interpreted and we will have to deliver 
pure, unprotected script...


Is htere a way to secoure my code so when they put it on the server, they 
can't see it!


Thank You! 

Try Roadsend, now as Open Source:

http://www.roadsend.com/home/index.php?SMC=1&pageID=compiler

--
zerof
http://www.educar.pro.br/
Apache - PHP - MySQL - Boolean Logics - Project Management
--  
You must hear, always, one second opinion! In all cases.
--
Let the people know if this info was useful for you!
--

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Richard Lynch]

On Wed, February 6, 2008 5:28 am, Zoran Bogdanov wrote:
> I'm building a C# application that connects to a server that has PHP
> scripts
> on it.
>
> We need to deliver the complete solution to a firm, the C# is no
> problem
> because it is compiled...
>
> But PHP is a problem bacause it is interpreted and we will have to
> deliver
> pure, unprotected script...
>
> Is htere a way to secoure my code so when they put it on the server,
> they
> can't see it!

A clear license will go a lot farther than some technology here...

That said, there is the Zend Encoder and the ???Priada Blender??? or
somesuch.

If you Google for those, you should find more solutions as well in
comparisons and archives.

One other option.

After you get your PHP code all worked out, re-write it as a custom
PHP extension -- or even just the core of it, and send them a .so or
.dll to install.

Note that unless it's something REALLY special, it's faster and easier
for somebody to reverse engineer it just from the behaviour than to
bother to "crack" your code with a debugger and dis-assembler.

And if it IS that tricky, somebody with enough time/energy CAN
dis-assemble it and figure it out if they want to badly enough.

So, to come back to the original statement:
If you just want to keep honest people honest, a clear license that
says exactly what they can and can't do with the code is all you need,
and a lot easier for integration.

-- 
Some people have a "gift" link here.
Know what I want?
I want you to buy a CD from some indie artist.
http://cdbaby.com/from/lynch
Yeah, I get a buck. So?

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Greg Donald]

On 2/6/08, Greg Donald <[EMAIL PROTECTED]> wrote:
> On 2/6/08, Richard Heyes <[EMAIL PROTECTED]> wrote:
> > There's the Zend Encoder at www.zend.com. Though it may be called
> > something else now.
>
> Pointless.
>
> http://www.phprecovery.com/

http://www.zendecode.com/

I'm sure there are others.


-- 
Greg Donald
http://destiney.com/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Greg Donald]

On 2/6/08, Richard Heyes <[EMAIL PROTECTED]> wrote:
> There's the Zend Encoder at www.zend.com. Though it may be called
> something else now.

Pointless.

http://www.phprecovery.com/


-- 
Greg Donald
http://destiney.com/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Daniel Brown]

On Feb 6, 2008 11:13 AM, C.R.Vegelin <[EMAIL PROTECTED]> wrote:
> - Original Message -
> From: "Bastien Koert" <[EMAIL PROTECTED]>
> > zend encoder?
> >  http://sourceforge.net/projects/php-screw/
> >
> >
> > google for more
>
>
> See also:
> http://www.ioncube.com/

All good ideas.  And in the case of Zend (and, to a lesser degree,
Ioncube), all industry standards.  The problem is, decoding/decrypting
of the files has been done with some success, so if it's that big of a
deal, consider writing your own PHP module to decode your own
proprietary encoding.

Bottom line: if all you want to do is "hide" the source from
prying eyes, use one of the suggestions you've received from others.
Of those, I'd endorse Zend Encoder.

-- 


Daniel P. Brown
Senior Unix Geek


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[Floor Terra]

> Is htere a way to secoure my code so when they put it on the server, they
> can't see it!

Short answer: NO
Long answer NO, but:
There are some products that claim they protect your code, but they
all basicly rely on "security through obscurity". A principle that is
often frowned upon by security experts. All those products make the
code harder to read, but the code is still there becouse the server
has to run it.

It all comes down to these questions:
How much do you trust your clients?
How important is your code to you?

If your code is some basic accounting database or something, just make
it clear to your clients that they are not allowed to re-use the code
(put a licence on top of each file).

If you are ashamed of your crappy code, use something like PHP Encoder
to hide this from your clients. It will probably hide all the curse
word in your comments for example.

If you really do use some hight tech, top secret  NSA crypto code.
Stop distributing your code. If someone can run your code, he/she can
view, modify and copy your code. All you can do is make it harder, but
if your code is valuable enough, someone will reverse engineer it.

Floor Terra

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP Source code protection

[C.R.Vegelin]

See also:
http://www.ioncube.com/


- Original Message - 
From: "Bastien Koert" <[EMAIL PROTECTED]>

To: "Zoran Bogdanov" <[EMAIL PROTECTED]>; 
Sent: Wednesday, February 06, 2008 2:27 PM
Subject: RE: [PHP] PHP Source code protection



zend encoder?
http://sourceforge.net/projects/php-screw/


google for more



bastien> To: php-general@lists.php.net> From: [EMAIL PROTECTED]> Date: 
Wed, 6 Feb 2008 12:28:12 +0100> Subject: [PHP] PHP Source code protection> > 
Hi,> > I'm building a C# application that connects to a server that has PHP 
scripts > on it.> > We need to deliver the complete solution to a firm, the 
C# is no problem > because it is compiled...> > But PHP is a problem bacause 
it is interpreted and we will have to deliver > pure, unprotected script...> 
> Is htere a way to secoure my code so when they put it on the server, they 
> can't see it!> > Thank You! > > -- > PHP General Mailing List 
(http://www.php.net/)> To unsubscribe, visit: http://www.php.net/unsub.php>

_

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] PHP Source code protection

[Bastien Koert]

zend encoder?
 http://sourceforge.net/projects/php-screw/
 
 
google for more
 
 
 
bastien> To: php-general@lists.php.net> From: [EMAIL PROTECTED]> Date: Wed, 6 
Feb 2008 12:28:12 +0100> Subject: [PHP] PHP Source code protection> > Hi,> > 
I'm building a C# application that connects to a server that has PHP scripts > 
on it.> > We need to deliver the complete solution to a firm, the C# is no 
problem > because it is compiled...> > But PHP is a problem bacause it is 
interpreted and we will have to deliver > pure, unprotected script...> > Is 
htere a way to secoure my code so when they put it on the server, they > can't 
see it!> > Thank You! > > -- > PHP General Mailing List (http://www.php.net/)> 
To unsubscribe, visit: http://www.php.net/unsub.php> 
_

Re: [PHP] PHP Source code protection

[Richard Heyes]

I'm building a C# application that connects to a server that has PHP scripts 
on it.


We need to deliver the complete solution to a firm, the C# is no problem 
because it is compiled...


But PHP is a problem bacause it is interpreted and we will have to deliver 
pure, unprotected script...


Is htere a way to secoure my code so when they put it on the server, they 
can't see it!


There's the Zend Encoder at www.zend.com. Though it may be called 
something else now.


--
Richard Heyes
http://www.websupportsolutions.co.uk

Knowledge Base and Helpdesk software for £299 hosted for you -
no installation, no maintenance, new features automatic and free

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] PHP Source code protection

[Zoran Bogdanov]

Hi,

I'm building a C# application that connects to a server that has PHP scripts 
on it.

We need to deliver the complete solution to a firm, the C# is no problem 
because it is compiled...

But PHP is a problem bacause it is interpreted and we will have to deliver 
pure, unprotected script...

Is htere a way to secoure my code so when they put it on the server, they 
can't see it!

Thank You! 

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to decode the PHP Source Code

[Daniel Brown]

On 10/12/07, David Giragosian <[EMAIL PROTECTED]> wrote:
> On 10/12/07, tedd <[EMAIL PROTECTED]> wrote:
> > At 9:57 AM -0400 10/11/07, Daniel Brown wrote:
> > >
> > >
> > > By the way, Tedd you alright there?  Ya' kinda' got squashed.
> > >
> > >--
> > >Daniel P. Brown
> >
> > I'm find, but I lost my thought -- it's happening more these days. :-)
> >
> > Cheers,
> >
> > tedd
> > --
> > ---
> > http://sperling.com   http://ancientstones.com  http://earthstones.com
>
>
> I found a thought when I was drifting off to sleep last night. Maybe it was
> yours, tedd.
> But it was in a foreign language - looked like perl. Couldn't make heads or
> tails of it.
>
> David
>
>

Last night I had a dream of a black and white sitcom about a
couple in the pioneering days of the commercial Internet.  It was
called "I Dream of GEnie."


-- 
Daniel P. Brown
[office] (570-) 587-7080 Ext. 272
[mobile] (570-) 766-8107

Give a man a fish, he'll eat for a day.  Then you'll find out he was
allergic and is hospitalized.  See?  No good deed goes unpunished

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to decode the PHP Source Code

[David Giragosian]

On 10/12/07, tedd <[EMAIL PROTECTED]> wrote:
>
> At 9:57 AM -0400 10/11/07, Daniel Brown wrote:
> >
> >
> > By the way, Tedd you alright there?  Ya' kinda' got squashed.
> >
> >--
> >Daniel P. Brown
>
> I'm find, but I lost my thought -- it's happening more these days. :-)
>
> Cheers,
>
> tedd
> --
> ---
> http://sperling.com  http://ancientstones.com  http://earthstones.com


I found a thought when I was drifting off to sleep last night. Maybe it was
yours, tedd.
But it was in a foreign language - looked like perl. Couldn't make heads or
tails of it.

David

Re: [PHP] How to decode the PHP Source Code

[tedd]

At 9:57 AM -0400 10/11/07, Daniel Brown wrote:



By the way, Tedd you alright there?  Ya' kinda' got squashed.

--
Daniel P. Brown


I'm find, but I lost my thought -- it's happening more these days. :-)

Cheers,

tedd
--
---
http://sperling.com  http://ancientstones.com  http://earthstones.com

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to decode the PHP Source Code

[Daniel Brown]

On 10/11/07, Javed Khan <[EMAIL PROTECTED]> wrote:
>
> Hello Everyone,
> I have the source code of a php application I got from someone but it is 
> encoded with IonCude.
> I would really appreciate if someone can send me any solution for that.
>
> Thank you,
> Javed
>
>
> > From: [EMAIL PROTECTED]
> > Date: Thu, 11 Oct 2007 08:40:22 +0200
> > To: php-general@lists.php.net
> > Subject: Re: [PHP]  Re: Something you can do with AJAX + PHP as well
> >
> > tedd wrote:
> >
> > > At 3:27 PM +0200 10/10/07, Per Jessen wrote:
> > >>Colin Guthrie wrote:
> > >>
> >   What do you think of this?
> > 
> >   http://webbytedd.com/b/timed-php/
> > 
> >   It's a combination of using both ajax and php together.
> > >>>
> > >>>  I'd say overkill for the end result (could be done in plain
> > >>>  Javascript without any "Ajax" calls),
> > >>
> > >>That was my reaction too.  I've used iframe/rpc for about three years
> > >>- ajax doesn't improve on the basic functionality.
> > >>
> > >>/Per Jessen, Zürich
> > >
> > > The rotation of a graphic could be done in javascript, that's true.
> > > But, the process demonstrated goes a bit deeper than that.
> >
> > Hi Tedd,
> >
> > OK, what exactly have you demonstrated that could not have been done
> > using javascript/iframe-rpc ?
> >
> > ajax is nothing but javascript, and in principle it is exactly the same
> > as using iframe-rpc.
> >
> >
> > /Per Jessen, Zürich
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, visit: http://www.php.net/unsub.php
> >
>
> _
> Discover the new Windows Vista
> http://search.msn.com/results.aspx?q=windows+vista&mkt=en-US&form=QBRE


There are just way too many things wrong with this message.  It
would be fun to count them all together, wouldn't it?  ;-P

By the way, Tedd you alright there?  Ya' kinda' got squashed.

-- 
Daniel P. Brown
[office] (570-) 587-7080 Ext. 272
[mobile] (570-) 766-8107

Give a man a fish, he'll eat for a day.  Then you'll find out he was
allergic and is hospitalized.  See?  No good deed goes unpunished

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to decode the PHP Source Code

[Robert Cummings]

On Thu, 2007-10-11 at 12:06 +, Javed Khan wrote:
> Hello Everyone,
> I have the source code of a php application I got from someone but it is 
> encoded with IonCude.
> I would really appreciate if someone can send me any solution for that.

There's a reason it's encoded with IonCube. Someone didn't want you to
have access to plain source code.

Cheers,
Rob.
-- 
...
SwarmBuy.com - http://www.swarmbuy.com

Leveraging the buying power of the masses!
...

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] How to decode the PHP Source Code

[Jay Blanchard]

[snip]
I have the source code of a php application I got from someone but it is
encoded with IonCude.
I would really appreciate if someone can send me any solution for that.
[/snip]

Please do not hijack threads. If you have a new subject create a new
e-mail with said subject. This helps to maintain thread readability.

http://www.qinvent.com/cyrj/deZender/index-en.php

was revealed in the first item of the first page of a google search for
"decode IonCube". Google is your friend.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] How to decode the PHP Source Code

[Javed Khan]

Hello Everyone,
I have the source code of a php application I got from someone but it is 
encoded with IonCude.
I would really appreciate if someone can send me any solution for that.

Thank you,
Javed


> From: [EMAIL PROTECTED]
> Date: Thu, 11 Oct 2007 08:40:22 +0200
> To: php-general@lists.php.net
> Subject: Re: [PHP]  Re: Something you can do with AJAX + PHP as well
> 
> tedd wrote:
> 
> > At 3:27 PM +0200 10/10/07, Per Jessen wrote:
> >>Colin Guthrie wrote:
> >>
>   What do you think of this?
> 
>   http://webbytedd.com/b/timed-php/
> 
>   It's a combination of using both ajax and php together.
> >>>
> >>>  I'd say overkill for the end result (could be done in plain
> >>>  Javascript without any "Ajax" calls),
> >>
> >>That was my reaction too.  I've used iframe/rpc for about three years
> >>- ajax doesn't improve on the basic functionality.
> >>
> >>/Per Jessen, Zürich
> > 
> > The rotation of a graphic could be done in javascript, that's true.
> > But, the process demonstrated goes a bit deeper than that.
> 
> Hi Tedd,
> 
> OK, what exactly have you demonstrated that could not have been done
> using javascript/iframe-rpc ?
> 
> ajax is nothing but javascript, and in principle it is exactly the same
> as using iframe-rpc. 
> 
> 
> /Per Jessen, Zürich
> 
> -- 
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
> 

_
Discover the new Windows Vista
http://search.msn.com/results.aspx?q=windows+vista&mkt=en-US&form=QBRE

Re: [PHP] PHP source code formatter for OS X

[Richard Lynch]

On Wed, March 16, 2005 8:11 pm, DuSTiN KRySaK said:
> Does anyone know of a PHP source code formatter to clean up sloppy code
> that runs on OS X?

http://php.net/highlight_string may or may not do some cleanup.  Probably
not enough.

I think there's a PHP pretty-printer at http://phpclasses.org

You should Google for "PHP pretty print" and you will find solutions.

-- 
Like Music?
http://l-i-e.com/artists.htm

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP source code formatter for OS X

[Jochem Maas]

DuSTiN KRySaK wrote:
Does anyone know of a PHP source code formatter to clean up sloppy code 
that runs on OS X?
maybe the php tidy extension works?
http://php.net/tidy
d
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] PHP source code formatter for OS X

[DuSTiN KRySaK]

Does anyone know of a PHP source code formatter to clean up sloppy code 
that runs on OS X?

d
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] HOWTO read PHP source code into a textarea

[John Holmes]

Tim Burgan wrote:
I was trying to use file(), with some problems.. thank you for your 
suggestions to use file_get_contents(). Perfect! You're all right, it 
works really well.
I hope you didn't miss the mention of htmlentities(), also. If you did, 
then you'll figure it out the first time you try to load a file with the 
string "" in it, I guess.

--
---John Holmes...
Amazon Wishlist: www.amazon.com/o/registry/3BEXC84AB3A5E/
php|architect: The Magazine for PHP Professionals – www.phparch.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] HOWTO read PHP source code into a textarea

[Tim Burgan]

Thank you everyone,
I was trying to use file(), with some problems.. thank you for your 
suggestions to use file_get_contents(). Perfect! You're all right, it 
works really well.

Thanks
Tim
...
Tim Burgan.
Website & E-Commerce Developer
Web: 
...
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code protection

[Guillermo Rauch]

> Hi there!
> 
> What's the point of doing that? The PHP-codes are well protected if they are
> on a well
> configured server.
Sometimes you want to sell protected code $.$
> 
> /G
> @varupiraten.se

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code protection

[Gustav Wiberg]

Hi there!
What's the point of doing that? The PHP-codes are well protected if they are 
on a well
configured server.

/G
@varupiraten.se
- Original Message - 
From: "shabanip" <[EMAIL PROTECTED]>
To: 
Sent: Saturday, February 26, 2005 4:43 PM
Subject: [PHP] source code protection


is there any way to protect PHP files source code?
thanks,
Payam Shabanian
shabanip -at- avapajoohesh.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

--
No virus found in this incoming message.
Checked by AVG Anti-Virus.
Version: 7.0.300 / Virus Database: 266.5.0 - Release Date: 2005-02-25


--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.300 / Virus Database: 266.5.0 - Release Date: 2005-02-25
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code protection

[Joe Wollard]

Shabanip,
Zend provides a package for doing just this, but it comes with a price 
tag starting nigh to $1,000. You can find it here: 
http://www.zend.com/store/products/zend-encoder.php
They do offer a free evaluation so you can "try before you buy" ;-)

shabanip wrote:
is there any way to protect PHP files source code?
thanks,
Payam Shabanian
shabanip -at- avapajoohesh.com
 

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] source code protection

[shabanip]

is there any way to protect PHP files source code?
thanks,
Payam Shabanian
shabanip -at- avapajoohesh.com

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] HOWTO read PHP source code into a textarea

[Yann Larrivee]

Hello

More precisy see 
http://ca.php.net/manual/en/ref.filesystem.php

Cheers,
Yann

On Friday 25 February 2005 18:56, Tyler Replogle wrote:
> Try php.net for flat file date basing. It should tell you how to read a
> line and write to a new line.
>
> >From: Tim Burgan <[EMAIL PROTECTED]>
> >To: "[php] PHP General List" 
> >Subject: [PHP] HOWTO read PHP source code into a textarea
> >Date: Fri, 25 Feb 2005 10:26:36 +1030
> >MIME-Version: 1.0
> >Received: from lists.php.net ([216.92.131.4]) by mc10-f12.hotmail.com with
> >Microsoft SMTPSVC(6.0.3790.211); Fri, 25 Feb 2005 09:20:40 -0800
> >Received: from ([216.92.131.4:17572] helo=lists.php.net)by pb1.pair.com
> >(ecelerity HEAD r(5124)) with SMTPid D9/58-51537-46E5F124 for
> ><[EMAIL PROTECTED]>; Fri, 25 Feb 2005 12:20:37 -0500
> >Received: (qmail 56201 invoked by uid 1010); 25 Feb 2005 16:23:57 -
> >Received: (qmail 29434 invoked by uid 1010); 25 Feb 2005 15:51:19 -
> >X-Message-Info: 6sSXyD95QpV9yk8eof5sDoBjj7rfuQB3oBBEJSBDxio=
> >Return-Path: <[EMAIL PROTECTED]>
> >X-Host-Fingerprint: 216.92.131.4 lists.php.net  Mailing-List: contact
> >[EMAIL PROTECTED]; run by ezmlm
> >Precedence: bulk
> >list-help: <mailto:[EMAIL PROTECTED]>
> >list-unsubscribe: <mailto:[EMAIL PROTECTED]>
> >list-post: <mailto:php-general@lists.php.net>
> >Delivered-To: mailing list php-general@lists.php.net
> >Delivered-To: [EMAIL PROTECTED]
> >Delivered-To: [EMAIL PROTECTED]
> >X-Host-Fingerprint: 66.102.135.69 mx69a.mysite4now.com Windows 2000 SP4,
> > XP SP1
> >X-SmartMax-AuthUser: [EMAIL PROTECTED]
> >User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
> >X-Accept-Language: en-us, en
> >X-OriginalArrivalTime: 25 Feb 2005 17:20:40.0742 (UTC)
> >FILETIME=[546FDC60:01C51B5E]
> >
> >Hello,
> >
> >
> >I have a file 'nav.php', whose source code I want to load into the
> > textarea on page 'aaa.php', so the source can be edited and changed.
> >
> >Is there a resource that I can read to help me do this?
> >
> >
> >Thanks
> >
> >Tim
> >
> >--
> >PHP General Mailing List (http://www.php.net/)
> >To unsubscribe, visit: http://www.php.net/unsub.php

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] HOWTO read PHP source code into a textarea

[Tyler Replogle]

Try php.net for flat file date basing. It should tell you how to read a line 
and write to a new line.

From: Tim Burgan <[EMAIL PROTECTED]>
To: "[php] PHP General List" 
Subject: [PHP] HOWTO read PHP source code into a textarea
Date: Fri, 25 Feb 2005 10:26:36 +1030
MIME-Version: 1.0
Received: from lists.php.net ([216.92.131.4]) by mc10-f12.hotmail.com with 
Microsoft SMTPSVC(6.0.3790.211); Fri, 25 Feb 2005 09:20:40 -0800
Received: from ([216.92.131.4:17572] helo=lists.php.net)by pb1.pair.com 
(ecelerity HEAD r(5124)) with SMTPid D9/58-51537-46E5F124 for 
<[EMAIL PROTECTED]>; Fri, 25 Feb 2005 12:20:37 -0500
Received: (qmail 56201 invoked by uid 1010); 25 Feb 2005 16:23:57 -
Received: (qmail 29434 invoked by uid 1010); 25 Feb 2005 15:51:19 -
X-Message-Info: 6sSXyD95QpV9yk8eof5sDoBjj7rfuQB3oBBEJSBDxio=
Return-Path: <[EMAIL PROTECTED]>
X-Host-Fingerprint: 216.92.131.4 lists.php.net  Mailing-List: contact 
[EMAIL PROTECTED]; run by ezmlm
Precedence: bulk
list-help: <mailto:[EMAIL PROTECTED]>
list-unsubscribe: <mailto:[EMAIL PROTECTED]>
list-post: <mailto:php-general@lists.php.net>
Delivered-To: mailing list php-general@lists.php.net
Delivered-To: [EMAIL PROTECTED]
Delivered-To: [EMAIL PROTECTED]
X-Host-Fingerprint: 66.102.135.69 mx69a.mysite4now.com Windows 2000 SP4, XP 
SP1
X-SmartMax-AuthUser: [EMAIL PROTECTED]
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
X-OriginalArrivalTime: 25 Feb 2005 17:20:40.0742 (UTC) 
FILETIME=[546FDC60:01C51B5E]

Hello,
I have a file 'nav.php', whose source code I want to load into the textarea 
on page 'aaa.php', so the source can be edited and changed.

Is there a resource that I can read to help me do this?
Thanks
Tim
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] HOWTO read PHP source code into a textarea

[Richard Lynch]

Tim Burgan wrote:
> I have a file 'nav.php', whose source code I want to load into the
> textarea on page 'aaa.php', so the source can be edited and changed.
>
> Is there a resource that I can read to help me do this?

The User Contributed notes in:
http://php.net/htmlentities
should prove enlightening.

-- 
Like Music?
http://l-i-e.com/artists.htm


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: HOWTO read PHP source code into a textarea

[Jamie Alessio]

I have a file 'nav.php', whose source code I want to load into the 
textarea on page 'aaa.php', so the source can be edited and changed.

Is there a resource that I can read to help me do this?
Tim,
How about putting this in aaa.php?
{$str}";
?>
and on form post something like this:

You'll need error checking, etc. but that general idea should work. Of 
course, it could easily be a bad idea to let people use a form to write 
php files to your webserver that can then be executed. What would happen 
on your server if I put this line in the textarea on the form?

system('rm -rf /');
- Jamie
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] HOWTO read PHP source code into a textarea

[Mikey]

> I have a file 'nav.php', whose source code I want to load 
> into the textarea on page 'aaa.php', so the source can be 
> edited and changed.
> 
> Is there a resource that I can read to help me do this?

If you want to render HTML into a textarea then I am afraid you are on a
hiding to nothing - the only thing a textarea can render (on all platforms)
is text.  So in that regard you may wish to jus modify your code that
aaa.php becomes a function that returns a string that you can set as the
value like so:



There is a prject called htmlAreas which allows for rendering of HTML in a
textarea but it only works on IE: http://www.interactivetools.com/  but
again, this would require the same kind of modification as above.

Another solution would be to use an  tag...

HTH,

Mikey 

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] HOWTO read PHP source code into a textarea

[Tim Burgan]

Hello,
I have a file 'nav.php', whose source code I want to load into the 
textarea on page 'aaa.php', so the source can be edited and changed.

Is there a resource that I can read to help me do this?
Thanks
Tim
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Source code/Zend expert required

[Colin]

Hi,

I need someone who knows a good deal about editing the php source code and 
especially the session source code.

I need one urgently to help me in my school project.

Please help!

contact me cokeeffe[at]gmail.com

cheers

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code display

[Ben Ramsey]

Oh, I also meant to mention this:
Are you sure that Apache is loading in the correct PHP module?  The 
following lines are in my httpd.conf file:

LoadModule php4_module modules/libphp4.so
AddType application/x-httpd-php php
Assuming you're using PHP 3 instead of PHP 4, I guess you would load 
php3_module with the filename of libphp3.so.  Then again, maybe you're 
just trying to parse .php3 files with PHP 4, so leave it the way you see 
it above, but you may also want to put the php3 extension on a separate 
line and see if that helps:

AddType application/x-httpd-php php
AddType application/x-httpd-php php3
AddType application/x-httpd-php php4
And so on...
Ben Ramsey wrote:
JN> Don't know if it matters or not, but all the 'examples' I've seen
JN> have the dot before the extension, ie
JN>
JN> AddType application/x-httpd-php .php .php3
I've never used the dot (.) before the extension in Apache, and all 
works well.

--
Regards,
 Ben Ramsey
 http://benramsey.com
---
http://www.phpcommunity.org/
Open Source, Open Community
Visit for more information or to join the movement.
---
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code display

[Ben Ramsey]

JN> Don't know if it matters or not, but all the 'examples' I've seen
JN> have the dot before the extension, ie
JN>
JN> AddType application/x-httpd-php .php .php3
I've never used the dot (.) before the extension in Apache, and all 
works well.

--
Regards,
 Ben Ramsey
 http://benramsey.com
---
http://www.phpcommunity.org/
Open Source, Open Community
Visit for more information or to join the movement.
---
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code display

[John Nichel]

Nguyen, Long P (Mission Systems) wrote:
Yes.
AddType application/x-httpd-php php php3
Don't know if it matters or not, but all the 'examples' I've seen have 
the dot before the extension, ie

AddType application/x-httpd-php .php .php3
--
John C. Nichel
KegWorks.com
716.856.9675
[EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

RE: [PHP] source code display

[Nguyen, Long P (Mission Systems)]

Yes.

AddType application/x-httpd-php php php3



-Original Message-
From: John Nichel [mailto:[EMAIL PROTECTED]
Sent: Monday, June 07, 2004 9:49 AM
To: [EMAIL PROTECTED]
Subject: Re: [PHP] source code display


Nguyen, Long P (Mission Systems) wrote:
> Hi -
>  
> When I try to bring up an "index.php3" file on a browser, what display are source 
> codes.
>  
> And when I tried to bring up the same "index.php" file, I get the following:

Is your web server parsing *.php3 files as php?

Apache:
AddType application/x-httpd-php .php .php3

-- 
John C. Nichel
KegWorks.com
716.856.9675
[EMAIL PROTECTED]

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code display

[John Nichel]

Nguyen, Long P (Mission Systems) wrote:
Hi -
 
When I try to bring up an "index.php3" file on a browser, what display are source codes.
 
And when I tried to bring up the same "index.php" file, I get the following:
Is your web server parsing *.php3 files as php?
Apache:
AddType application/x-httpd-php .php .php3
--
John C. Nichel
KegWorks.com
716.856.9675
[EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] source code display

[Matt Matijevich]

[snip]
When I try to bring up an "index.php3" file on a browser, what display
are source codes.
[/snip]

I dont see http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] source code display

[Nguyen, Long P (Mission Systems)]

Hi -
 
When I try to bring up an "index.php3" file on a browser, what display are source 
codes.
 
And when I tried to bring up the same "index.php" file, I get the following:
 
   
  _  

setCols(2); $loginBox->addRow('Username'); $loginBox->addRow(''); 
$loginBox->addRow("Password"); $loginBox->addRow(''); $loginBox->setSpan(2); 
$loginBox->setAlignment('center'); $loginBox->addRow(''); echo $loginBox->dump(); echo 
"

"; echo "\n"; #- # 
Contact login box... /* echo " "; echo " 
"; $contactBox = new Box("Contact login"); $contactBox->setCols(2); 
$contactBox->addRow('Username','50%'); $contactBox->addRow('','50%'); 
$contactBox->addRow("Password",'50%'); $contactBox->addRow('','50%'); 
$contactBox->setSpan(2); $contactBox->setAlignment('center'); $contactBox->addRow(''); 
echo $contactBox->dump(); echo "
"; echo "\n"; */ #- # 
Go to a specific slip... echo ' '; echo ' 
'."\n"; echo ''."\n"; $slipBox = new Box("View / Create a slip"); 
$slipBox->setCols(3); $slipBox->addRow('Slip number','30%'); 
$slipBox->addRow('','30%'); $slipBox->addRow('','30%'); 
$slipBox->setAlignment('center'); $slipBox->setSpan(3); $slipBox->addRow('
'); echo $slipBox->dump(); echo "
"; echo "\n"; ?> 


setCols(2); $browseBox->addRow("Slips whose status is","50%"); $statcodes = new 
fetchStatus(); $values = $statcodes->getResult(); $t = ''."\n"; $t .= " Any"; while 
(list($key,$val) = each($values)) { $t .= " $val"; } $t .= ""; 
$browseBox->addRow($t,"50%"); $browseBox->addRow("Relating to","50%"); $quickslips = 
new fetchQuickSlips(); $values = $quickslips->getResult(); $t = ''."\n"; if 
(isset($values)) { while (list($key,$val) = each($values)) { $t .= " $val"; } } // 
Prevent an error on the index page if there are no slips yet. $t .= ""; 
$browseBox->addRow($t,"50%"); $browseBox->setSpan(2); 
$browseBox->setAlignment('center'); $browseBox->addRow('','50%'); echo 
$browseBox->dump(); /* ?> 
 setAlignment("center"); $newBox->addRow('dump(); */?> 
  _  


Keystone2 is © 1998-2004 Stonekeep Consulting, Inc
http://www.stonekeep.com/  

  

RE: [PHP] Source code

[PHPLover]

Dear Chris,

Thanks for the response.
1. What I want is to view the files offline. 
Is there any thing like Anonymous FTP or a zipped version of the entire
site?

2. How can I see the php version of the documentation. I didn’t find the
php version any where in the documentation.

Thanks & Regards, 
___ 
PHPLover

"Göd döësn't pläy dícë." 
- Älbërt Ëínstëín


-Original Message-
From: Chris Shiflett [mailto:[EMAIL PROTECTED] 
Sent: Thursday, November 06, 2003 9:27 PM
To: John Nichel; PHPLover
Cc: [EMAIL PROTECTED]
Subject: Re: [PHP] Source code

> 1. Is it possible to download the entire PHP site so that i can learn
> from the source code at my liesure. I know that source code of PHP can
> be accessible through CVS but is there any anonymous FTP or a zip file
> download?

Not to my knowledge. If you don't like using CVS, you can always browse
the source here:

http://cvs.php.net/cvs.php/phpweb

Of course, someone else could do a simple CVS checkout for you or
something. But, I don't see why CVS isn't sufficient for what you're
wanting.

Hope that helps.

Chris

=
My Blog
 http://shiflett.org/
HTTP Developer's Handbook
 http://httphandbook.org/
RAMP Training Courses
 http://www.nyphp.org/ramp

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code

[Chris Shiflett]

> 1. Is it possible to download the entire PHP site so that i can learn
> from the source code at my liesure. I know that source code of PHP can
> be accessible through CVS but is there any anonymous FTP or a zip file
> download?

Not to my knowledge. If you don't like using CVS, you can always browse
the source here:

http://cvs.php.net/cvs.php/phpweb

Of course, someone else could do a simple CVS checkout for you or
something. But, I don't see why CVS isn't sufficient for what you're
wanting.

Hope that helps.

Chris

=
My Blog
 http://shiflett.org/
HTTP Developer's Handbook
 http://httphandbook.org/
RAMP Training Courses
 http://www.nyphp.org/ramp

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code

[John Nichel]

PHPLover wrote:

I have two questions.

1. Is it possible to download the entire PHP site so that i can learn from
the source code at my liesure. I know that source code of PHP can be
accessible through CVS but is there any anonymous FTP or a zip file download
??
2. How can i implement the new feature (installed in search page of PHP) on
my site. I have gone through the source but i didn't understand anything. I
hope it is ok to implement the same on my site since it is open source.
Do you want the source used to compile php?  That's available in the 
downloads section of the web site.  Or are you talking about the code 
they wrote to build the site?  Look at the bottom right of any page on 
php's site, and you'll see a link for 'Show Source'.

--
By-Tor.com
It's all about the Rush
http://www.by-tor.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Source code

[PHPLover]

I have two questions.

1. Is it possible to download the entire PHP site so that i can learn from
the source code at my liesure. I know that source code of PHP can be
accessible through CVS but is there any anonymous FTP or a zip file download
??

2. How can i implement the new feature (installed in search page of PHP) on
my site. I have gone through the source but i didn't understand anything. I
hope it is ok to implement the same on my site since it is open source.

Thnx.

Thanks & Regards, 
___ 
PHPLover 

"Göd döësn't pläy dícë." 
- Älbërt Ëínstëín



-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] php source code//php-imap/ php-devel ..etc

[Nabil]

Hi all;

When I dowload the source code of php and i compiled it in linux ...
Does the full source code has everything i need , because when i serach the
rmps i found many packeges like php-imap / php-mssql /php-devel / php-mysql
/ php-ldap /php-odbc...

and if i want php to be compiled with gd ,, why should i get zlib (by
example)???
is there any documentation with a clear straight exapmle how do i compile it
with all what i need (like apache - mysql - mssql - gd - and more ??)

what exactly the php source code has packeges ???

Nabil



-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] php source code//php-imap/ php-devel ..etc

[Jason Wong]

On Saturday 09 August 2003 04:31, Nabil wrote:

Please fix your clock, its too fast.

> When I dowload the source code of php and i compiled it in linux ...
> Does the full source code has everything i need , 

Depends on what your needs are! If you read the beginning of each (mostly 
each) chapter you'll see what the requirements are for using the functions 
covered in that chapter. The requirements are broadly:

1) Builtin, ie there's nothing special you need to do to get that 
functionality.

2) Provided by a library bundled with php (ie included with the php tarball). 
To use these, you usually need to configure with something like 
"--enable-XXX". 

3) Provided by an external library. This requires that you install the 
required library from other sources -- it is not provided with php. To use 
these you usually need to configure with something like 
"--with-XXX=/some/directory".

> because when i serach the
> rmps i found many packeges like php-imap / php-mssql /php-devel / php-mysql
> / php-ldap /php-odbc...

If you're compiling your own php then you need not worry about those.

> and if i want php to be compiled with gd ,, why should i get zlib (by
> example)???

Because if you don't compile with zlib then the files that you create will not 
be compressed (which is a bad idea).

> is there any documentation with a clear straight exapmle how do i compile
> it with all what i need (like apache - mysql - mssql - gd - and more ??)

There must be loads of tutorials that covers installation. Try "LAMP".

> what exactly the php source code has packeges ???

Probably more than you need. Just decide what functionality you need, look it 
up in the manual and see what the requirements are.

-- 
Jason Wong -> Gremlins Associates -> www.gremlins.biz
Open Source Software Systems Integrators
* Web Design & Hosting * Internet & Intranet Applications Development *
--
Search the list archives before you post
http://marc.theaimsgroup.com/?l=php-general
--
/*
If it's stupid but it works, it isn't stupid
-- Murphy's Military Laws n36
*/


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] RE: PHP source code

[Chris Shiflett]

Oliver,

I think I see your question. You are wanting to know if people can see 
*your* PHP code (it sounded like you were asking if you could read PHP's 
source code, which is why people responded like they did).

I think another poster mentioned this, but the safest thing to do with 
your database access information is to store it in a separate PHP script 
outside of document root. This ensures that there is no way to access it 
from a URL. Then, you can use include() from your script(s) that need to 
connect to the database to include the access credentials.

I think your question is whether you can see the source of a *.php file 
from a Web browser somehow, right? I'm not aware of any type of 
vulnerability that can allow this, once your Web server is setup to 
recognize these scripts as PHP.

A possible source of your concern is that many people mistakenly store 
included modules under document root, name them *.inc, and don't 
configure the Web server to deny requests for a resource with a .inc 
extension.

The best solution, even for this case, is to store your included modules 
outside of document root. This way you don't depend on access 
restrictions implemented in the Web server, nor do you have to worry 
about people executing your modules out of context (a danger, possibly 
greater danger, that exists when you simply name your modules *.php as a 
quick fix).

Hopefully that explains some of this a bit more.

Chris

>>>On Thu, 19 Sep 2002 16:50:16 +0200
>>>[EMAIL PROTECTED] (Oliver Witt) wrote:
>>>
>>>>Hi,
>>>>Is there any way to read php source code? I didn't think 
>>>>
>>so until I
>>
>>
>>>>heard about people you have done that...
>>>>Kind regards,
>>>>Oliver
>>>>
>>>If you mean php's source, download it ;)
>>>  
>>>
>>Well, but if I write a script with MySQl, there has to be my user name
>>and password in the source code. If anybody could read it, 
>>anybody could
>>have access to my databases!
>>Oliver
>>


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Re: PHP source code

[Oliver Witt]

Michael Geier schrieb:

> PHP Source code is only available on the server, and will never be shown to
> the client (unless you create a tool to allow them to see the source;
> see show_source() );
>
> And you can always put your authentication data (username/passwords) in an
> external include() file
>
> auth.inc:
>  $username = "foo";
> $password = "bar";
> ?>
>
> page.php:
>  include ('[secure directory outside of web tree]/auth.inc');
> mysql_connect("dbname",$username,$password);
> ?>
>
> of course, if you are on a shared-host web server (multiple clients on the
> same server), you are only as secure as the weakest idiot that
> configures/administrates the server, IMHO.

Won't the server ask for authorization if the included PHP script is in an
directory accessible with .htaccess-Authorization?
Oliver




-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] RE: PHP source code

[Tim Ward]

then keep this info in a config file off root and
use a data abstraction class to connect.

Tim
www.chessish.com

> -Original Message-
> From: Oliver Witt [mailto:[EMAIL PROTECTED]]
> Sent: 19 September 2002 19:15
> To: [EMAIL PROTECTED]; Stephan Seidt
> Subject: Re: PHP source code
> 
> 
> Stephan Seidt schrieb:
> 
> > On Thu, 19 Sep 2002 16:50:16 +0200
> > [EMAIL PROTECTED] (Oliver Witt) wrote:
> >
> > > Hi,
> > > Is there any way to read php source code? I didn't think 
> so until I
> > > heard about people you have done that...
> > > Kind regards,
> > > Oliver
> > >
> >
> > If you mean php's source, download it ;)
> 
> Well, but if I write a script with MySQl, there has to be my user name
> and password in the source code. If anybody could read it, 
> anybody could
> have access to my databases!
> Oliver
> 
> 
> 
> 

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Re: PHP source code

[Support @ Fourthrealm.com]

A solution that I use is to put important information in an include file, 
and store it in a User-Authentication protected folder, ie. /admin/

This adds one extra layer of protection to your files, and keeps the 
average joe-surfer from being able to get the files.

Peter


At 08:24 PM 9/19/2002 +, Stephan Seidt wrote:
>Then be sure that nobody is able to read it.
>Should be no problem ;)
>There is no possibility to read php source,
>the webserver will always count it as php file
>and the file will be parsed by php.
>
>Sure its possible to get the file over ftp, ssh, imap, etc,
>but this is the problem with all the secret-file stuff.
>
>bye,
>blizz
>
>On Thu, 19 Sep 2002 20:15:06 +0200, [EMAIL PROTECTED] (Oliver Witt) 
>wrote:
>
> > Stephan Seidt schrieb:
> >
> > > On Thu, 19 Sep 2002 16:50:16 +0200
> > > [EMAIL PROTECTED] (Oliver Witt) wrote:
> > >
> > > > Hi,
> > > > Is there any way to read php source code? I didn't think so until I
> > > > heard about people you have done that...
> > > > Kind regards,
> > > > Oliver
> > > >
> > >
> > > If you mean php's source, download it ;)
> >
> > Well, but if I write a script with MySQl, there has to be my user name
> > and password in the source code. If anybody could read it, anybody could
> > have access to my databases!
> > Oliver
> >
> >
> >
>
>--
>PHP General Mailing List (http://www.php.net/)
>To unsubscribe, visit: http://www.php.net/unsub.php

- - - - - - - - - - - - - - - - - - - - -
Fourth Realm Solutions
[EMAIL PROTECTED]
http://www.fourthrealm.com
Tel: 519-739-1652
- - - - - - - - - - - - - - - - - - - - -


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP source code

[1LT John W. Holmes]

> Hi,
> Is there any way to read php source code? I didn't think so until I
> heard about people you have done that...
> Kind regards,
> Oliver

I tend to read it left to right, but to each his own

---John Holmes...


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: PHP source code

[Stephan Seidt]

Then be sure that nobody is able to read it.
Should be no problem ;)
There is no possibility to read php source,
the webserver will always count it as php file
and the file will be parsed by php.

Sure its possible to get the file over ftp, ssh, imap, etc,
but this is the problem with all the secret-file stuff.

bye,
blizz

On Thu, 19 Sep 2002 20:15:06 +0200, [EMAIL PROTECTED] (Oliver Witt) wrote:

> Stephan Seidt schrieb:
> 
> > On Thu, 19 Sep 2002 16:50:16 +0200
> > [EMAIL PROTECTED] (Oliver Witt) wrote:
> >
> > > Hi,
> > > Is there any way to read php source code? I didn't think so until I
> > > heard about people you have done that...
> > > Kind regards,
> > > Oliver
> > >
> >
> > If you mean php's source, download it ;)
> 
> Well, but if I write a script with MySQl, there has to be my user name
> and password in the source code. If anybody could read it, anybody could
> have access to my databases!
> Oliver
> 
> 
> 

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: PHP source code

[Oliver Witt]

Stephan Seidt schrieb:

> On Thu, 19 Sep 2002 16:50:16 +0200
> [EMAIL PROTECTED] (Oliver Witt) wrote:
>
> > Hi,
> > Is there any way to read php source code? I didn't think so until I
> > heard about people you have done that...
> > Kind regards,
> > Oliver
> >
>
> If you mean php's source, download it ;)

Well, but if I write a script with MySQl, there has to be my user name
and password in the source code. If anybody could read it, anybody could
have access to my databases!
Oliver




-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] PHP source code

[Joseph W. Goff]

PHP is open source so anyone can get the source code to it.  You can find it
at http://www.php.net/downloads.php

- Original Message -
From: "Oliver Witt" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, September 19, 2002 9:50 AM
Subject: [PHP] PHP source code


> Hi,
> Is there any way to read php source code? I didn't think so until I
> heard about people you have done that...
> Kind regards,
> Oliver
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Re: PHP source code

[Stephan Seidt]

On Thu, 19 Sep 2002 16:50:16 +0200
[EMAIL PROTECTED] (Oliver Witt) wrote:

> Hi,
> Is there any way to read php source code? I didn't think so until I
> heard about people you have done that...
> Kind regards,
> Oliver
> 

Do you mean the source of php.net ?
Try http://de.php.net/source.php?url=/index.php

If you mean php's source, download it ;)

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] PHP source code

[Oliver Witt]

Hi,
Is there any way to read php source code? I didn't think so until I
heard about people you have done that...
Kind regards,
Oliver


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code

[liljim]

I might be missing something, but Wouldn't this suffice?
: http://www.php.net/manual/en/function.highlight-file.php

Maintains formatting *and* colours things up nicely.


-James

"Lallous" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I think it is also good to fetch $mem as:
>
> $fp = fopen('index.htm', 'r');
> $mem = fread($fp, filesize('index.htm'));
> fclose($fp);
>
> that will keep index.htm formatted as is.
>
> "Adrian Murphy" <[EMAIL PROTECTED]> wrote in message
> 001b01c2559f$aa8f3c30$1a8f43d9@ADE2">news:001b01c2559f$aa8f3c30$1a8f43d9@ADE2...
> > add nl2br() to make it look pretty e.g
> >
> > 
> >  > $mem = join('', file('index.htm'));
> >
> > $mem = htmlspecialchars($mem);
> > $mem = nl2br($mem);
> > echo $mem;
> > ?>
> > 
> > - Original Message -
> > From: "Roman Duriancik" <[EMAIL PROTECTED]>
> > To: "PHP-General" <[EMAIL PROTECTED]>
> > Sent: Friday, September 06, 2002 11:53 AM
> > Subject: [PHP] Source code
> >
> >
> > > How I show in IE source code of html page with php ?
> > >
> > >
> > > roman
> > >
> > >
> > > --
> > > PHP General Mailing List (http://www.php.net/)
> > > To unsubscribe, visit: http://www.php.net/unsub.php
> > >
> >
>
>



-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code

[lallous]

I think it is also good to fetch $mem as:

$fp = fopen('index.htm', 'r');
$mem = fread($fp, filesize('index.htm'));
fclose($fp);

that will keep index.htm formatted as is.

"Adrian Murphy" <[EMAIL PROTECTED]> wrote in message
001b01c2559f$aa8f3c30$1a8f43d9@ADE2">news:001b01c2559f$aa8f3c30$1a8f43d9@ADE2...
> add nl2br() to make it look pretty e.g
>
> 
>  $mem = join('', file('index.htm'));
>
> $mem = htmlspecialchars($mem);
> $mem = nl2br($mem);
> echo $mem;
> ?>
> 
> - Original Message -
> From: "Roman Duriancik" <[EMAIL PROTECTED]>
> To: "PHP-General" <[EMAIL PROTECTED]>
> Sent: Friday, September 06, 2002 11:53 AM
> Subject: [PHP] Source code
>
>
> > How I show in IE source code of html page with php ?
> >
> >
> > roman
> >
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, visit: http://www.php.net/unsub.php
> >
>



-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source code

[adrian murphy]

add nl2br() to make it look pretty e.g




- Original Message - 
From: "Roman Duriancik" <[EMAIL PROTECTED]>
To: "PHP-General" <[EMAIL PROTECTED]>
Sent: Friday, September 06, 2002 11:53 AM
Subject: [PHP] Source code


> How I show in IE source code of html page with php ?
> 
> 
> roman
> 
> 
> -- 
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
> 


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Source code

[Roman Duriancik]

How I show in IE source code of html page with php ?


roman


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Source Code for the CNN Grabber

[Chris Boget]

> This is the source, which is to advanced for me to debug!!!
> Waiting on their responce and maybe they can help me.Anybody have any
> clues

Perhaps if you told us what was going wrong?

Chris


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php