dev did
not validate the data passed in via get.
The code populating params looks like:
$params = array
(
'd' => $_GET['d'],
);
$job = Job::getInfo($params);
On Mon, Oct 7, 2013 at 9:29 AM, Stuart Dallas wrote:
>
We have a server that gets a large number of requests each month.
After a period of time I began to see this error in our error logs this
weekend.
PHP Fatal error: Call to undefined function ()
It does not reference a function, so I found it odd. It did give a line to
a function with array_mer
Hello everyone,
I have a question about the `parent` keyword: is there any valid
situation where it can appear without the `::` operator following?
I am asking to fix a bug in php-mode[1] for GNU Emacs. Consider the
following code:
echo $parent;
echo parent::$foo;
echo $this->paren
iable" on line 6.
etc but was too dumb to work out the fix :-(
The other bloke talking strine on 'tamouse' has given me plenty to work
on. I see you were also talking about spring chickens and autumn
turkeys. I reckon I am almost a dodo at 82 :-)
Thanks again to you all.
Che
eSubject";
Can anyone please advise or point me in the right direction for
instructions on how to combine the fixed text with the variable
$MessageSubject.
Thanks
Mike
Michael CALDER
73/81 Willandra Road,
CROMER NSW 2099
02 9981 6327
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Hello everyone,
I do not know how many PHP developers use GNU Emacs for writing code.
But I assume it must be a decent amount since there are multiple PHP
modes for Emacs floating around the Internet. For months I have
worked to improve one of those modes, what seemed to be the most
popular: htt
On 4 December 2012 19:24, Farzan Dalaee wrote:
> Warning: imap_open() [function.imap-open]: Couldn't open stream
> mail.mydomain.net:143/pop3INBOX in C:\xampp\htdocs\mail.php on line 6
>
> this is my code
>
> $host = 'mail.mydomain.net:143/pop3';
> $user = 'x...@mydomain.net';
> $password = 'myPas
ot; wrote:
>
>
>
> Joomla.
>
> Michael Shadle wrote:
>> I suggest
> Wordpress only for blogs or "brochureware" or basic page
> based
>> sites. It has security flaws often and I've had many sites
> hacked and
>> servers compromised becaus
I suggest Wordpress only for blogs or "brochureware" or basic page based sites.
It has security flaws often and I've had many sites hacked and servers
compromised because of it.
Out of the box it is very easy to use and polished and has a lot of themes
available and is pretty easy to theme.
I
perfectly well.
The only problem I have is when I use the 'children' option with assertTag,
because the count never hast the value it should have.
kind regards,
Michael
On Wed, May 2, 2012 at 9:22 PM, Jim Lucas wrote:
> On 05/02/2012 10:55 AM, Michael Otteneder wrote:
>
>>
e assertion SHOULD work - but it does not, no matter what I
use for count! Sadly PHPUnit's output ist not very helpful, all it gives me
is:
1) GeneratedFiltersTest::testUnconfiguredFilter
Failed asserting that false is true.
Has someone got an idea whats going on? This is really freakin me out,
could not find anything about it anywhere on the web.
Kind regards,
Michael
>> if you want develope / clone more modules for that please start from
>> http|s.req :p and let me coninue at php
>>
>> http://stackoverflow.com/a/9199961 my nodejs + php thing
>>
>> 2012/3/22, Michael Save :
>> > Very nice!
>> >
>>
well with
people in general
- Can be responsive to client emergencies - NOTE: this is the MOST important
quality
- Has some web design experience (or has a colleague who does)
- Speaks English well
If this fits you or you know someone like this, please send an email to:
Michael Frankel
Directo
Very nice!
I'll have a proper look at this in the morning, and I'll try it out
for myself. Looking forward to seeing more development on this.
Michael
On Thu, Mar 22, 2012 at 11:40 AM, Joseph Moniz wrote:
> Hey,
>
> So i had my first Hackathon at work last week an
w3schools is not a good source.
http://w3fools.com/
On Thu, Mar 22, 2012 at 5:33 PM, Midhun Girish wrote:
> I think this would be an ideal resource for beginners
> http://www.w3schools.com/php/php_forms.asp. I used it when i began php. I
> would suggest doing the entire course in there. Really h
On 3/15/2012 9:04 AM, Tedd Sperling wrote:
What's a better/shorter way to write this?
$first_name = $_SESSION['first_name'] ? $_SESSION['first_name'] : null;
$first_name = isset($_POST['first_name']) ? $_POST['first_name'] : $first_name;
$_SESSION['first_name'] = $first_name;
Better:
$first_na
How about this?
$first_name = @$_POST['first_name'] or $first_name =
$_SESSION['first_name'] ? $_SESSION['first_name'] : null;
Thanks,
Michael
On Fri, Mar 16, 2012 at 2:13 AM, Daniel Brown wrote:
> On Thu, Mar 15, 2012 at 11:04, Tedd Sperling wrote:
>>
. I mean, you can change the value of
$_SERVER['DOCUMENT_ROOT'] to whatever you want at runtime, but of
course it will not actually change the current directory if that's
what you're after.
Thanks,
Michael
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
eam...
fclose($bz);
it gives exactly what I need.
But still I wonder why bzopen() isn't work, meanwhile the phpdoc tells
that it should work that way.
---
Maciek Sokolewicz wrote:
On 31-01-2012 15:34, Michael Shestero wrote:
header("Content-Description: File Transfer");
heade
header("Content-Description: File Transfer");
header("Content-Disposition: attachment; filename=f.bzip2");
header("Content-Type: application/x-bzip2");
//header("Content-length: " . strlen($zippedfile) . "\n\n");
header("Content-Transfer-Encoding: binary");
ob_flush();
$bz = bzopen( 'php://outp
Thanks Geert
That has fixed it, with flying colours!
Michael
On 19.07.2011, at 10:05, Dr Michael Daly wrote:
> Hi
> is there a simple solution here, other than reverting to php4?
> An upgrade from php5 to php5 has resulted in an error msg in this line:
>
> if( strlen($db_res )
{
//do_log("query.log","$PHP_SELF - CACHED $q");
$short_query_cache[str_replace(" ","",$q)] = $db_res ;
// print "";
}
return $db_res;
}
Michael
On Jul 19, 2011, at 3:05 AM, Dr
uot;query.log",$PHP_SELF." - FROM-CACHE - ".$q);
return $db_res;
}
}
Thanks
Michael
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
On Mon, Jun 6, 2011 at 5:50 PM, Brian Dunning wrote:
> Here's my code:
>
> error_reporting(E_ALL);
> require_once('/var/www/mysite/includes/fpdi.php');
> require_once('/var/www/mysite/includes/fpdf.php');
try adding this too:
ini_set('display_errors', 1);
I've realized I've had to do that before
Thanks alot...
On May 7, 2011, at 8:39 PM, wrote:
echo 'Welcome ' . $current_user->user_firstname . "B>\n";
echo '' . $current_user->user_lastname . "\n";
?>
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
hey,
some php 101 here guys :)
i want to bold the first name and last name in the code below...
user_firstname . "\n";
echo '' . $current_user->user_lastname . "\n";
?>
Thanks
Michael
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Dan,
thanks for the reply.this is the code that shows/lists the
categories
$cats = $download_taxonomies-
>get_parent_cats();
if (!empty($cats)) {
Hello,
Here is the scenario
I have a form with the folloing fields i. Title ii. Category (This
is a drop down with a list of categories which have id's - am using
wordpress ) iii. upload file field
now what i want to do is to be able to customize a link like http://www.mysite.com/ad
hello,
i want to add links to the code below in wordpress ie where it says
"control the world" and "read and comment only" i want to make it a
link http://www.google.com"; target="_self">My Link
Thanks
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://
Hi, I'm a bit of a newbie at PHP and programming in general.
Reading a PHP book by Larry Ullman, I was given instructions to install
Pear Auth package and also Pear DB.
As the Pear website said that DB has been deprecated in favor of MDB2, I
installed this latter package.
However, I am getting
http://www.php.net/
On Wed, Apr 6, 2011 at 9:15 PM, Kirk Bailey wrote:
> If I only had 1 book on php, what would it be?
>
> --
> end
>
> Very Truly yours,
> - Kirk Bailey,
> Largo Florida
>
> kniht
> +-+
>
am using jcart but would like to customize the gateway.php file to use
another payment gateway instead of paypalany help from the
community ?
way I
could turn magic quotes off on a file by file basis or even just
folders at a time to test things systematically before I turn things
off system wide?
Cheers,
Michael
k
hello,
i need some quick help integrating the iVery payment gateway in a
wordpress site
thanks
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
into a few fields
that I believe this is causing issues with so I'm considering turning it
off but am wondering what steps should I take to make sure that nothing
breaks and what should I look out for? Also, is it still a good idea to
turn off since this installation isn't yet at 5.3?
Cheer
$board.last.title|default:"Post..."}">{$board.last.title|
default:"Post..."|truncate:40}
» title="{$board.last.title|default:"Post..."}">{$board.last.title|
default:"Post..."|truncate:40}
{/if}
Best Regards
Michael S.
On Wed, Jan 12, 2011 at 12:37 PM, Daniel Brown wrote:
> The @ is an error control operator, used to buffer the output and
> store it in a variable - $php_errormsg. There's no way that would be
> changed to become an array designator (though that doesn't mean your
> idea itself is a bad one).
On Fri, Jan 7, 2011 at 12:30 AM, Michelle Konzack
wrote:
> Does someone know, whether there is a PHP extension like "getenv" or
> something which give the passwd fields back?
http://php.net/posix
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/uns
On Wed, Dec 29, 2010 at 10:30 AM, Daniel P. Brown
wrote:
> That's more of a frontend question to which you and your
> six-million-line signature should check Google to find the answer.
> Don't get me wrong, Michelle, we've always tried to help out even with
> off-topic questions, but this is r
Try google. This is getting a bit insane now. Sorry.
On Dec 27, 2010, at 1:19 PM, Michelle Konzack
wrote:
> Hi *,
>
> after I got my pastebin runing, I need a second tool for binary uploads.
>
> Any hints?
>
> (Must work easy like the pastebin script)
>
> Thanks, Greetings and nice Day/Even
On Tue, Dec 21, 2010 at 9:27 PM, wrote:
> Warning: session_start() [function.session-start]:
> Cannot send session cache limiter - headers already
> sent (output started at /./sess.php:3) in
> /./sess.php on line 5
first - this is probably your culprit:
don't output empty lines
Okay, I know this is a Sendmail/SMTP admin issue, but it's PHP-related
and I figured someone here might have a clue or might have solved this
issue before. I've come into this dev server after many hands have
touched it, and I'm not quite sure how to proceed, nor am I a Linux genius.
We're
Is range the right header to be sending? I thought it was something else.
Also I believe there is a curl_setopt option for range... Look at php.net's
predefined constants for the curl modul
On Nov 21, 2010, at 3:05 PM, Tontonq Tontonq wrote:
> hi im downloading files from h0tf1le as a premium
Not to discredit this long post but the media here is now calling kids who text
often "hypertexting teens" which really irked me even more...
I bet some non-technical news guy thinks he is awesome for coming up with that
one.
On Nov 11, 2010, at 9:54 AM, "Daniel P. Brown"
wrote:
> On Thu, No
i would point someone in the direction of XHP too if they really wanted to
https://github.com/facebook/xhp/wiki/
On Mon, Nov 8, 2010 at 2:10 PM, Peter Lind wrote:
> On 8 November 2010 22:59, Michael Shadle wrote:
>> On Mon, Nov 8, 2010 at 1:41 PM, Hansen, Mike wrote:
>>> I re
On Mon, Nov 8, 2010 at 1:41 PM, Hansen, Mike wrote:
> I really like the idea of using a templating engine. Which one do you use?
> Why? For those that don't use templating engines, why don't you use them?
smarty is everyone's favorite usually but i find it a bit annoying.
not to mention php its
t; $end_time ORDER BY
C.start_time";
(the only bit that changes is the text betw the first two 'ANDS')
It comes from PBCS online appointment software.
Thanks
Michael
-Original Message-
From: Dr Michael Daly [mailto:g...@holisticgp.com.au]
Sent: Sunday, 31 October
thanks for this Ash...I didn't really understand but I do now!
unfortunately the fix didn't work, possibly bec the mysql data is in
binary format (default then becomes: case sensitive). I got a 'syntax
error' result
I'll find a mysql forum
Michael
This isn't
ment_id =
C.id ".
"AND LOWER(C.description) LIKE
'%".strtolower($search_for)."%' AND
C.start_time > $start_time AND C.start_time < $end_time ORDER BY
C.start_time";
$result = pbcs_db_query($query);
Thanks
Michael
Melb, Aust
On Thu, Oct 21, 2010 at 3:40 PM, Daniel Brown wrote:
> Unfortunately, Michael, while I appreciate your analogy (rarely is
> something well-balanced between wit, truth, and vivid imagery enough
> to make me laugh at the mental picture), I must point out that, in
> this case, you&
On Thu, Oct 21, 2010 at 3:12 PM, Nathan Nobbe wrote:
> i've found top-posting to be useful in the corporate environment where the
> people i'm working with are too ignorant to understand the rationale.
> however, when you're working with programmers, i think the expectation is
> more than reason
On Thu, Oct 21, 2010 at 1:21 PM, Nathan Nobbe wrote:
> what does syntax highlighting have to do w/ a mess of text that could be
> sorted out by folks willing to take the extra 2 seconds to put their
> thoughts at the bottom of a mail?
> i doubt there are any web-based lists that reorganize top-po
On Thu, Oct 21, 2010 at 12:56 PM, Nathan Nobbe wrote:
> um, right, the whole point is that the conversations are not being viewed
> through mail clients when people are finding them via search engines on the
> web.
> and some mail clients are dumber than others, lol.
a lot of the time even the w
On Thu, Oct 21, 2010 at 12:42 PM, Larry Martell
wrote:
> http://idallen.com/topposting.html
top posting is no big IMHO.
in fact, it's easier to read on mobile devices such as an iphone. it's
also easier to reply.
email clients like google will hide the common lines anyway.
to me this comes on
There is a fileinfo module for php (and it's packaged in 5.3)
http://www.php.net/manual/en/intro.fileinfo.phphttp://www.php.net/manual/en/intro.fileinfo.php
However after trying to use "file" in a system call back in the day its great
with graphics and some other stuff, but a large number of the
On Sun, Sep 12, 2010 at 3:04 PM, Tamara Temple wrote:
> Actually, even the client-side aspect isn't good enough -- they could simply
> retype the same value in the field. Also, I'd like to not rely on JavaScript
> alone to indicate that there's been a change, since, as Ashley points out,
> someon
On Sun, Sep 12, 2010 at 2:12 PM, Tamara Temple wrote:
> Ok, but how do you detect if a field changes? The specific implementation
> between application and data storage is probably moot until you figure that
> part out.
+1
without talking to the server, or accessing it in the DOM somewhere,
the
Does special configuration have to take place with PHP to let apache
process server side include files that are HTML documents?
Mike
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
On Aug 31, 2010, at 7:53 PM, Bastien Koert wrote:
>>
>>
> Our company built one on top of wordpress. You can easily build most
> of it with stock plugins and it has UIs for idevices...worth
> considering
Yeah - obviously anything can be built and a lot of things can be extended...
But were
Yes, there is Moodle.
However, upon installing it, I found the admin UI to be extremely
gaudy, counter-intuitive, and requires it's own learning system just
to get it right (ha ha)
Does anyone know of any other options out there?
Obviously, open source is best, I'd even take some reasonably pric
On Thu, Aug 26, 2010 at 3:10 AM, Sridhar Pandurangiah
wrote:
> Mike
>
> Thanks a ton for the quick response. I have updated the mail id on my email
> client (using Mozilla TB) and I did repost but your reply was quicker!
>
> Will try this out and post the results on this thread. Just waiting for
>
On Thu, Aug 26, 2010 at 2:54 AM, wrote:
> Hi
>
> I am trying to read XML files (invoices) from a directory and display them
> to the visitor. Each XML file contains several invoices. The visitor then
> clicks on the XML file (invoices). My PHP snippet should open the xml file
> and locate the app
On Thu, Aug 5, 2010 at 8:51 PM, Adam Richardson wrote:
> Tim Bray, who knows a little bit about XML dialects (tongue in cheek),
> appears to default to the single quote as his delimiter of choice:
> http://www.tbray.org/ongoing/
Side note, looks like his stuff is auto-generated by something, so
On Thu, Aug 5, 2010 at 8:51 PM, Adam Richardson wrote:
> I would suggest that saying is "the wrong way" is a
> rather strong assessment. Whether you're talking about SGML (the
> grandparent), XML (the parent), or XHTML, the use of a single quote is
> perfectly valid, and has served a purpose si
On Thu, Aug 5, 2010 at 7:10 PM, Rick Dwyer wrote:
> Hi List.
> I've mentioned before that I am both just beginning to learn PHP AND I have
> inherited a number of pages that I'm trying to clean up the w3c validation on.
>
> Something that confuses me is how the code on the page is written where i
) to a saveable
PDF that is downloaded. Any ideas?
From,Michael calkinsmichaelcalk...@live.com360-941-6750
Ashley Sheridan wrote:
OK, I seem to have answered my own question!
It seems that even though PHP had the XML module enabled, I still needed
to run 'yum update php-xml' in order for it to load in the DOM module.
It's now working fine, and for those of you interested, the ./configure
line in p
+---+-+-+---+
How do we deduce that you would want ID '3' ?
This conversation would be easier if we gave names to those columns..
- michael dykman
On Mon, Jul 19, 2010 at 12:36 PM, Ashley M. Kirchner wrote:
>
> I may be going at this completely wrong but
Makes sense. Core would be more stripped down if it has modules available as
separate packages.
On Jul 19, 2010, at 4:19 AM, Ashley Sheridan wrote:
> On Mon, 2010-07-19 at 12:09 +0100, Ashley Sheridan wrote:
>
>> Hi all,
>>
>> I'm having a bit of a problem here with getting DomDocument on PHP
Michael A. Peters wrote:
Michael A. Peters wrote:
I need to switch from MySQL (where everything is peachy) to Postgresql
- reason I need to switch is I need to use PostGIS and I don't see a
need to run two databases.
I got Postgresql installed (stock CentOS / RHEL 5) and installe
Michael A. Peters wrote:
I need to switch from MySQL (where everything is peachy) to Postgresql -
reason I need to switch is I need to use PostGIS and I don't see a need
to run two databases.
I got Postgresql installed (stock CentOS / RHEL 5) and installed the
postgresql php module and
I need to switch from MySQL (where everything is peachy) to Postgresql -
reason I need to switch is I need to use PostGIS and I don't see a need
to run two databases.
I got Postgresql installed (stock CentOS / RHEL 5) and installed the
postgresql php module and mdb2 driver. Restarted the web s
On Jul 8, 2010, at 12:38 PM, David Mehler wrote:
> Hello,
> Got a form that takes in data to enter in to a database. I want to
> make it as secure and as invulnerable to sql injection and other
> attacks as possible. I'm wondering if mysqli_real_escape_string or
> stripslashes should be used or
I right now have a complete user login and registration system however it uses
cookies when you login to store information. Is this a bad thing?$_COOKIE vs
$_SESSION for login systems
From,Michael calkinsmichaelcalk...@live.com425-239-9952
biggest difference:
http://php.net/print
print() returns 1, always - which means it's returning a value
http://php.net/echo
doesn't return anything
Sara Golemon's "how long is a piece of string" blog post
(http://blog.libssh2.org/index.php?/archives/28-How-long-is-a-piece-of-string.html
which ap
I have found a bug report. This is the correct functionality.
Mike
> I understand that technically there are more than 52 weeks in a year.
> Well at least google says 1 year = 52.177457 weeks.
>
> So I run the command:
> php > echo date('W' , mktime(0, 0, 0, 1, 1, date('Y')));
> 53
>
> As you ca
I understand that technically there are more than 52 weeks in a year.
Well at least google says 1 year = 52.177457 weeks.
So I run the command:
php > echo date('W' , mktime(0, 0, 0, 1, 1, date('Y')));
53
As you can see the result is 53.
Any thoughts on this?
Mike
--
PHP General Mailing List
t;";---
I was trying to change the value of the variable which shows the input field to
have the password already in it.
and either one would just be echo'd depending on the result.
Any ideas please?
From,Michael calkinsmichaelcalk...@live.com
elementFontfont-familyfont-sizefont-stylef
On Wed, Jun 23, 2010 at 12:43 PM, Peter Lind wrote:
> I'm just wondering if this is a correct understanding:
> 1. plaintext data arrives on the web frontend.
or over SSL
> 2. It's sent to the app server
SSL or non-SSL - your choice
> 3. It's encrypted and sent to the DB server
encrypted or n
rote:
>> -Original Message-
>> From: Peter Lind [mailto:peter.e.l...@gmail.com]
>> Sent: Wednesday, June 23, 2010 12:22 AM
>> To: Michael Shadle
>> Cc: PHP-General
>> Subject: Re: [PHP] How to store encrypted data and how to store the key?
>>
>>
On Wed, Jun 23, 2010 at 1:12 AM, Tommy Pham wrote:
> Then I presume that your firewall, servers, and application is test proven
> 'bulletproof'? :-P
a) no such thing
b) pretty damn solid, yes
and the reason? because i don't overcomplicate things.
"a simple stack is a happy stack"
:)
--
PHP
On Wed, Jun 23, 2010 at 12:55 AM, Tommy Pham wrote:
>> I haven't had to implement a scheme like this but for an app I'm working on
>> we've been considering the same issues in order to keep member data safe.
>> I would say your best bet is to keep the decryption key in memory while the
>
> This i
On Wed, Jun 23, 2010 at 1:01 AM, Tommy Pham wrote:
> If you're going to implement this, then it's better to implement the
> conversion in the backend DB (via SP or UDF). So you can always use MySQL
> query browser or the command line to run queries or other methods depending
> on your access
On Wed, Jun 23, 2010 at 12:21 AM, Peter Lind wrote:
> I haven't had to implement a scheme like this but for an app I'm
> working on we've been considering the same issues in order to keep
> member data safe. I would say your best bet is to keep the decryption
> key in memory while the app is runn
On Wed, Jun 23, 2010 at 12:06 AM, Rene Veerman wrote:
> unlikely. it's a apache delivered ip address.. very little chance of
> insert vulnerabilities, imho.
still, the overhead for a db escape is better than your site being trashed.
also, you could look at converting the IP to an INT(10) (at lea
This is somewhat related to the whole PCI/credit card discussion a
couple weeks back. The consensus was basically "leave it to other
people" - however, what if YOU are the other person?
I wonder if anyone has some BKMs to share about encrypting data in a
web application. A lot of people take the m
As it turns out curl_multi does not block. I was able to use that plus
connection tracking to solve my problem.
Thanks Ash and Andrew.
Mike
> On Thu, Jun 17, 2010 at 9:05 AM, Michael Alaimo
> wrote:
>> I am trying to use register_shutdown_function. Â Previous to the script
>&g
> On Thu, 2010-06-17 at 09:05 -0400, Michael Alaimo wrote:
>
>> I am trying to use register_shutdown_function. Previous to the script
>> shutting down I use curl to grab a website.
>>
>> Basically I want to know if the user has hit the stop button or left the
>&
I am trying to use register_shutdown_function. Previous to the script
shutting down I use curl to grab a website.
Basically I want to know if the user has hit the stop button or left the
page prematurely.
The only problem is that curl runs and finishes its call before the
shutdown function is ca
On Tue, Jun 15, 2010 at 10:14 AM, Richard Quadling wrote:
> REST is a concept, not a protocol (as I understand it), so you cannot
> just create a service and supply a contract file. You have to document
> the service in some other way and then the users have to write all the
> code.
I know it's
Wso2 is also pretty awesome.
I wish soap would just die and be replaced with rest and json.
On Jun 15, 2010, at 6:15 AM, Richard Quadling wrote:
> On 15 June 2010 12:44, John wrote:
>>
>>
>>
>> Really i need help coz i am trying to solve this problem from 4 weeks and i
>> can not so please
Yes and scrubbing the input to ensure the field used for this URL
rejects certain characters or does sanity checking on it would also be
another suggestion. Turning this off would fix remote include
requests. But still need to check for people requesting local files.
Should never take user
cobar
Systems Analyst & Interface Designer
+ http://blog.igorescobar.com
+ http://www.igorescobar.com
+ @igorescobar (twitter)
On Mon, Jun 7, 2010 at 2:51 PM, Ashley Sheridan > wrote:
On Mon, 2010-06-07 at 10:48 -0700, Michael Shadle wrote:
Oh yeah. I do more than just intval() I ma
Because that only typecasts it. It's safe but it isn't what the user
actually entered.
This way I can actually determine if the user put in "123abc" and
reject it, not accept it and keep the "123" silently for example. Same
with floats. You may or may not consider a negative number acceptab
nes aren't the easiest to explain (or
bottom post)
On Jun 7, 2010, at 10:42 AM, Igor Escobar wrote:
It's not a SQL Injection or XSS problem, Michael.
It's a PHP Injection problem. I know how fix that but the web site
is very very huge, have lots and lots of partners and i&#x
On Jun 7, 2010, at 10:45 AM, Ashley Sheridan
wrote:
On Mon, 2010-06-07 at 10:38 -0700, Michael Shadle wrote:
It's not that bad.
Use filter functions and sanity checks for input.
Use htmlspecialchars() basically on output.
That should take care of basically everything.
On Jun 7, 201
It's not that bad.
Use filter functions and sanity checks for input.
Use htmlspecialchars() basically on output.
That should take care of basically everything.
On Jun 7, 2010, at 6:16 AM, Igor Escobar wrote:
This was my fear.
Regards,
Igor Escobar
Systems Analyst & Interface Designer
+ ht
How is it used for a website then?
From,Michael Calkins
> From: a...@ashleysheridan.co.uk
> To: michaelcalk...@live.com
> CC: php-general@lists.php.net
> Date: Fri, 4 Jun 2010 14:59:15 +0100
> Subject: Re: [PHP] What is "app.php?ph=cus&id=4"?
>
> On Fri,
I would google this but I have no idea what this method is or how it works.
app.php?ph=cus&id=4
Can some tell me what this either called or how it works?Can I get a tutorial
for it please?
Thank you!
From,Michael Calkins
elementFontfont-familyfont-sizefont-stylefont-variantfont-weightle
Is this a joke?
Better hope your merchant provider isn't lookin...
On Jun 1, 2010, at 7:17 PM, Brandon Rampersad
wrote:
I store CC # in plain text on my custom ecommerse website script so
i can
compare it with others. That way it's easier to convert to different
hashes
when i decide to
1 - 100 of 3293 matches
Mail list logo
