RE: Re: [PHP] Funny php://stdout behaviour

> I actually was getting prompted to download the .php file sometimes... So, the user would be able to open the file in, say, VI and see your code? Big security hole, no? Of which versions of php4 was this characteristic? Dotan Cohen --- MySQLp

[PHP] Sorting an array

ot;SELECT * FROM albums WHERE album LIKE 't' ORDER BY album"; $result_t = mysql_query($query_t) or die(mysql_error()); So I need to get just the albums from $result_t that begin with 'The ' (easy regex) and from $result_a that begin with 'A '

Re: [PHP] Chrome 1.0 released

seen on ./, it seems that Google may be pressing OEMs to include Chrome bundled on new computers. That cannot happen with a beta web browser. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-

Re: [PHP] Chrome 1.0 released

2008/12/12 Robert Cummings : > Do you mean "as seen on /." ? > I do, at least.. at least I mean what I say... that's the same thing, you know. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-

Re: [PHP] Chrome 1.0 released

stop acting like IE compatibility is the holy grain of web design then our customers will have no reason to think that either. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-

Re: [PHP] Chrome 1.0 released

ed on the internet because of that limitation, and my argument is that one browser that is _known_ problematic should not be cause to eliminate a feature for everyone else. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث

Re: [PHP] Chrome 1.0 released

2008/12/14 Yeti : > I have to defend poor little IE a little now. It supports XHTML and > CSS2 pretty well so far. And those standards came out a couple of > months ago. > How about HTML 4[.1] support? I would have like to see that fixed before adding new features. -- Dotan Cohen

Re: [PHP] MERRY XMAS

2008/12/24 German Geek : > Merry xmas to everyone! Thanks for the support and fun discussions. > חג חנוכה שמח! Happy Hanuka to those who celebrate it! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر

Re: [PHP] MERRY XMAS

2008/12/24 Richard Heyes : >> word > > Which one? > Open Office 3.0, to be exact. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-

[PHP] Page name for form submit: REQUEST_URI or SCRIPT_NAME

, but I ask here anyway to know if there are other differences that I did not account for. Thanks! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К

Re: [PHP] PHP Help Needed

2008/12/27 Ashley Sheridan : > RTFM > > http://www.php.net > Or STFW http://justfuckinggoogleit.com/search?q=php%20mysql%20file%20download%20script -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ

Re: [PHP] Page name for form submit: REQUEST_URI or SCRIPT_NAME

, using REQUEST_URI gives the actual > request, where PHP_SELF gives the actual file. > That is a good point, and it is rather likely that the form may wind up on an index.php page where the filename is not part of the URI. Thanks! -- Dotan Cohen http://what-is-what.com http://gibberish.co

Re: [PHP] PHP Help Needed

//www.google.com/search?q=php+mysql+file+download+script >http://www.joeclipart.com/blog/images/2007/06/20070628crack.jpg >http://www.phpbuilder.com/tips/item.php?id=5 > That was subtle :) -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י

Re: [PHP] Webhotel structure

2008/12/27 Daniel Brown : >What? > What's not clear? He asked about webhotels, he obviously intends on having extramarital cybersex. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-

Re: [PHP] Page name for form submit: REQUEST_URI or SCRIPT_NAME

tedd > Thanks, Tedd. That approach seems a bit dangerous for non-standard browsers such as mobile phones and the like who's developers might not have though about it. Also, in the event that a user saves the form locally (likely in this case) I need it to have a place to go! Tha

Re: [PHP] Webhotel structure

2008/12/28 tedd : >>> So I would prefer to remove everythink and start all over . > > He's talking about everythink. Whenever I do that, I have problems too. > Interestingly enough, today I opened Dan Kegel's (of Wine fame) website and was greeted with this: "D

Re: [PHP] Re: Webhotel structure

rver). Otherwise, I recommend Konqueror (From KDE) as the best graphical tool for managing files on a remote server. Good luck. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه

Re: [PHP] Re: Webhotel structure

host, compared to my less than 2$ a month, > but their help is a major candidate for winning the price of the most > useless help ever. > > A google search found a blog where the guy say they do not support ssh on > pivate hosting, so I guess not. > > /Peter > -- Dotan Cohen

Re: [PHP] Re: Webhotel structure

2008/12/31 tedd : > Everythink about getin' a job? > There's that word again! You keep using that word. I do not think that it means what you think it means. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب

Re: [PHP] Re: Webhotel structure

to look at my work homepage www.protelevision.com where > I am a HW engineer. > I cannot see that website as I have flash disabled. When your company puts up an HTML site I would be glad to look over it. Thanks. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח

Re: [PHP] Since I speak with some of you more than people I see in person....

e OP: congrats! You will enjoy this! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К-Л-М-Н-О-П-Р-С-Т-У-Ф-Х-Ц-Ч-Ш-Щ-Ъ-Ы-Ь-Э-Ю-Я а-б-в-г-д-е-ё-ж-з-и-й

Re: [PHP] Re: Webhotel structure

2008/12/31 tedd : > At 9:47 AM +0200 12/31/08, Dotan Cohen wrote: >> >> 2008/12/31 tedd : >>> >>> Everythink about getin' a job? >>> >> >> There's that word again! You keep using that word. I do not think that >> it means what

Re: [PHP] Thank you everyone, What a wonderful world

pted. According to the Geneva convention, it is _Hamas_ that is responsible for the civilian deaths in Gaza. By the way, Egypt (who knows better than anyone else in the world) blames Hamas fully for what has happened in the past week. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il

Re: [PHP] Thank you everyone, What a wonderful world

2009/1/3 Daniel Brown : > On Sat, Jan 3, 2009 at 14:00, Behzad wrote: >> >> Who are we? Vampires or Blinds? > >Worse. We're geeks. > And we have a troll in our midst. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-

Re: [PHP] Thank you everyone, What a wonderful world

2009/1/3 Behzad : > since you have modern weapons, equipped > with lasers! Did somebody say sharks with frigin' lasers? -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل

Re: [PHP] Because you guys/gals/girls/women/insert pc term here are a smart lot

gt; interaction it seemed like the place to ask. Thanks in advance, and have a > great day! > > Frank > http://justfuckinggoogleit.com/search?q=char+varchar+text+mysql -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا

Re: [PHP] Because you guys/gals/girls/women/insert pc term here are a smart lot

novices (myself included) who may not know better. Be careful with large databases if you do not have experience with them. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-

Re: [PHP] Because you guys/gals/girls/women/insert pc term here are a smart lot

2009/1/8 Richard Heyes : >> until you have to dump it, zip it, ssh it over to another box and then >> import it back in > > That's what fag breaks are for... :-) Well, that and smoking. > http://xkcd.com/303/ -- Dotan Cohen http://what-is-what.com http://gibberish.co

Re: [PHP] How can an elephant count for nothing?

Have you tried with a mouse? -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К-Л-М-Н-О-П-Р-С-Т-У-Ф-Х-Ц-Ч-Ш-Щ-Ъ-Ы-Ь-Э-Ю-Я а-б-в-г-д-е-ё-ж-з-и-й-к-л

Re: [PHP] Opinions needed

em than a database problem. Guess what my suggestion will be... -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К-Л-М-Н-О-П-Р-С-Т-У-Ф-Х-Ц-Ч-Ш-Щ-Ъ-Ы-Ь-Э

Re: [PHP] Don't Forget to Punch the Clock, Shorty!

> Anyone care to try this out? Feedback welcome. > > http://dftpcs.com > No. What is it? -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З

Re: [PHP] Don't Forget to Punch the Clock, Shorty!

letting you know why many list members won't visit that site. [1] http://en.wikipedia.org/wiki/Richard_Whitney_(financier) -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه

Re: [PHP] for the security minded web developer - secure way to login?

grab some salt off your server, use > javascript to encrypt the pass, and then sending it back. > Have you seen the fit Firefox 3 makes for self-signed certs? So far as the end user is concerned, the site is inaccesible. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-

Re: [PHP] Full versus relative URLs

> My casual observation seems to indicate that the former will load faster > than the latter. But has anyone done any benchmarking on it? Did you clear the cache between tests? That could explain the speed difference. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד

Re: [PHP] Full versus relative URLs

in one place: "; ?> Full URLs don't break when users save the pages to disk. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К-Л-М-Н-

Re: [PHP] Full versus relative URLs

r, > where inserting links like that is a pain. > For that you'd have to ask on the Dreamweaver list. I don't really like those tools. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-

Re: [PHP] Full versus relative URLs

ntly that had the > link that explained this issue on PHP_SELF. > Alternatively, $_SERVER['PHP_SELF']) could be switch()ed for known values, and $path be set accordingly with hardcoded values. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-

Re: [PHP] Full versus relative URLs

of course. > It's not vulnerable to injection in the sense that the attacker could not redirect the links to his site. At a maximum he could disable the links, but he could not redirect them. That's why I mean by hardcoded. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il

Re: [PHP] Full versus relative URLs

include paths (id somedir/foo.inc) are IMHO an even worse practice. > I did not know that his was possible. Thanks! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-

[PHP] PHPers: help KDE wiki, please!

KDE really needs a developer with PHP experience to sort out some issues with their wiki: http://aseigo.blogspot.com/2009/02/php-helper-for-userbase.html I anyone could donate the time, KDE and myself personally would appreciate it. Thanks! -- Dotan Cohen http://what-is-what.com http

Re: [PHP] PHPers: help KDE wiki, please!

> Aren't you a php developer? ;) > No, just a hobbyist who likes to tinker :) Hopefully by this time 2011 I will be a mechanical engineer, though! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-

Re: [PHP] Which file "Included" me?

> http://www.gfx-depot.com/forum/-php-server-php-self-validation-t-1636.html > > explains a technique to validate the input as well (don't trust that is > clean) > I do not understand the exploit. How is he spoofing any $_SERVER variables? The attack description doesn'

Re: [PHP] Which file "Included" me?

ot see in the code. 2) I thought that yoursite.com is the attacked site, and mysite.com is the attacking site. Now I see that the author just messed up and they both should have been yoursite.com. Why not just use SCRIPT_NAME then? It doesn't contain the path variables. -- Dotan Cohen http:

Re: [PHP] Browser timeout

t; messages, nothing worked. > Run the script in the background, and give the user a page that self-refreshes every 10 seconds. Or, better yet, use AJAX. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-

Re: [PHP] Re: Browser timeout

2009/3/2 Rick Lim : > Try > set_time_limit (0); > While technically that would work, the user would likely cancel the request, or send it multiple times, in 40 seconds. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-

Re: [PHP] Long Execution Time - Safe Mode

g that PHP might not be the right tool for this job. To avoid a flame war, I won't mention alternatives. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж

Re: [PHP] PHP Quiz

PHP's weak points. Whoever designed the HTML did a terrific job. The site displays perfectly when increasing text font size. Give him a compliment. Alright, I signed up! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-

Re: [PHP] PHP Quiz

ded 2) The answer is a matter of opinion. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К-Л-М-Н-О-П-Р-С-Т-У-Ф-Х-Ц-Ч-Ш-Щ-Ъ-Ы-Ь-Э-Ю-Я а-б-в-г-д-е-ё-ж-з-и

Re: [PHP] PHP Site Security issue

Someone hacked your server. Report it to the server admin. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il א-ב-ג-ד-ה-ו-ז-ח-ט-י-ך-כ-ל-ם-מ-ן-נ-ס-ע-ף-פ-ץ-צ-ק-ר-ש-ת ا-ب-ت-ث-ج-ح-خ-د-ذ-ر-ز-س-ش-ص-ض-ط-ظ-ع-غ-ف-ق-ك-ل-م-ن-ه‍-و-ي А-Б-В-Г-Д-Е-Ё-Ж-З-И-Й-К-Л-М-Н-О-П-Р-С-Т-У-Ф-Х-Ц-Ч-Ш-Щ-Ъ-Ы-Ь-Э

Re: [PHP] PHP Site Security issue

...and get it off of GoDaddy's servers. They are notorious for problems! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Re: So called "PHP Expert"

> Maybe someone else will disagree and say that its a masterpiece, then > I'll bow out gracefully. > Actually, it is a masterpiece and it _should_ be treated like the prize that it is with it's own page on some wiki. Under the title "How not to do it". -- Dotan C

Re: [PHP] Having trouble with a form to mail script.

t; > > > > > > > > > > …and when I > use it with the associated sendmail2.php script: > > > > > > > > $emailAddress = $_REQUEST['emailAddress'] ; > > $pwd = $_REQUEST['pwd'] ; > > $confirm = $_REQUEST[

Re: [PHP] Re: So called "PHP Expert"

fession. Where did the OP's expert study? I should make it know that I'm self-taught, so I do not rule out the possibility that one could teach himself. But I do not play the expert card, either. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List

Re: [PHP] So called "PHP Expert"

There are people in here, you insensitive clod! -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP] Show the entire browser request

I need to diagnose a web browser problem, and I'd like PHP to return a page that shows the entire browser request, exactly as it was sent. It would naturally contain all the data in the HTTP Headers Information from phpinfo() but formatted exactly as the browser sent it. Thanks. -- Dotan

Re: [PHP] Show the entire browser request

el, but I am trying to help someone who is writing a text-based web browser but gets "Bad Request" messages from some websites. As he is able to visit http://simplesniff.com (my site) I figured that it would help if I could just reply back with a page that contained the exact request

Re: [PHP] Show the entire browser request

>    Roger that.  Check out getallheaders() then: > >        http://php.net/getallheaders > Well, that seems to be partway there, but it doesn't include the GET request. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http:/

Re: [PHP] Show the entire browser request

owever, I am trying to diagnose a web browser that is _not_ correctly forming it's requests, therefore I need the real request itself, as it was. I am starting to realize that PHP is not the language for this, I may have to look into an Apache module or something lower-level. Thanks! -- Do

Re: [PHP] Show the entire browser request

> If its the request from the browser, why not just fire up a packet sniffer > and get it that way? Unless it's using SSL/TLS/VPN/something that would > encrypt it, you should be able to see the request in clear text. > The browser is running on a Symbian cellphone. -- Dotan C

Re: [PHP] Show the entire browser request

; Stuart, that is quite a bit of work! Nice! I also learned some really nice tips here, such as your usage of define for the header and footer, and why that is the cleanest solution when you need the content-length. The usage of sockets is new to me too, but this was easy to follow. Thanks! -- D

Re: [PHP] Show the entire browser request

it would give you credit for writing the code as well. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Show the entire browser request

> There are no risks that I can see in the code. You're welcome to use > it, and a link to http://stut.net/ is always appreciated ;-) > In August when I will have more time to devote to it I will put it on the site. With link, and it is _me_ who appreciates _your_ help. Thanks! Dot

Re: [PHP] Show the entire browser request

ire request verbatim (valid or not) that I'd like to add. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] This Friday's OT Thread

> I'm self-employed. I don't plan on ever laying myself off. > Wow, I really replaced "laying" with "getting" in my mental eye and that sentence made too much sense. Please, don't ever do that to me again! -- Dotan Cohen http://what-is-what.com http:/

Re: [PHP] This Friday's OT Thread

>> I'm self-employed. I don't plan on ever laying myself off. > >    Mind out of the gutter, Rob.  Words like "self," "laying," and > "off" will get you flagged. > How naive I was to think that I might be the only one to make the c

Re: [PHP] Does something like this exist?

re utilized by which classes (eg, instantiation) > > I've done some looking around but haven't really been able to find > anything that does even some of this.  I could write functionality > that does this but didn't want to reinvent the wheel. > I think that you'

[PHP] Cannot exec in my own directory

I have a script in /home/username/script.sh with permissions 777. I can SSH into the server and execute ./script.sh to run the script, but calling it from exec in PHP does not run it. What should I start checking? Thanks. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP

[PHP] Sanitizing mysql inserts of user data

g($dirty); return $clean; } Is this good enough to prevent SQL injection attacks? Should I add anything else? Thanks! Dotan Cohen -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Cannot exec in my own directory

me/username/ directory there are other files, such as database_connection.inc that I regularly include_once in my PHP scripts, so I know that PHP has read access to that directory. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To un

Re: [PHP] Sanitizing mysql inserts of user data

to SQL Injection Attacks."? Logically, it does _not_ mean the same thing. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Sanitizing mysql inserts of user data

t two newlines in a row (or none, depending on application). It also limits spaces to a single space and ensures that all ampersands are escaped properly before sanitation with htmlentities. Dotan Cohen -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Cannot exec in my own directory

> Please copy your script in the Linux include paths. Such as /usr/local/bin > and give it neccecary permission and try your script again. > I do not have root access on this machine. That is why I run the script from /home/username/ -- Dotan Cohen http://what-is-what

Re: [PHP] Cannot exec in my own directory

m the CLI in an SSH session results in the expected behaviour: the script specified in the exec command is run. Not so if I call the php script from a web browser. Thanks for the tipoff. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://w

Re: [PHP] Cannot exec in my own directory

ure. > So if every thing else fails I'll recommend you to move the script to > /var/ww (usually your server root) instead of /home/user > I have no access to that directory. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.

Re: [PHP] Cannot exec in my own directory

> That's a potential security flaw waiting to happen. A script like this > shouldn't be kept in a web-accessible directory. > Thanks, Ash. That directory is HTTP-password protected. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List

Re: [PHP] Cannot exec in my own directory

les included in this instance. I only mentioned it to show that PHP can read from that directory. Thanks. -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Sanitizing mysql inserts of user data

nction.maxdb-stmt-bind-param.php http://il2.php.net/manual/en/mysqli-stmt.bind-param.php I do not see how there could possibly be a prepared statement for a user comment. I am not a programmer by trade, so I may be missing something obvious. If so, a link and a friendly RTFM would be great. -- Dot

Re: [PHP] Sanitizing mysql inserts of user data

t; in place of an actual value, and do malicious things to your > database, or obtain information you don't want users to see (like credit > card numbers). If you're curious, search for "SQL injection" to get more > information and see examples. > I am familiar with SQL injection, I wrote about it here: http://what-is-what.com/what_is/sql_injection.html -- Dotan Cohen http://what-is-what.com http://gibberish.co.il -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Sanitizing mysql inserts of user data

It wasn't the colons being mistaken for comments that threw me off, I realized that they were not comments. But being unfamiliar with PDO and named parameters I did not understand exactly what was happening. I will try to google some more information on PDO now. Thanks. -- Dotan Cohen htt

[PHP] How to read cookies set by php?

I'm trying to debug some scripts, and I see that the contents of cookies seems to be encoded (in Firefox2 on Kubuntu, at least). How can one read the cookies stored on his machine? Dotan Cohen http://what-is-what.com/what_is/gmail.html http://datip.com -- PHP General Mailing List

Re: [PHP] How to read cookies set by php?

On 02/01/07, tedd <[EMAIL PROTECTED]> wrote: At 4:16 PM +0200 1/2/07, Dotan Cohen wrote: >I'm trying to debug some scripts, and I see that the contents of >cookies seems to be encoded (in Firefox2 on Kubuntu, at least). How >can one read the cookies stored on his machine? &

Re: [PHP] How to read cookies set by php?

son that I want to do that is to debug a php script, but it certainly is not a php issue. Sorry for the noise. Dotan Cohen http://what-is-what.com/what_is/webpage.html http://olnu.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to read cookies set by php?

OOKIES) might work? Seems like an awful lot of work, but it might make you feel like a real hacker :-) :-) :-) Nice. Might just do it for the experience. I've played with /etc/hosts to get rid of advertisements, so I'm comfortable with it. Thanks. Dotan Cohen http://what-is-what

[PHP] Removing UTF-8 from text

i', '', $text); I've tried with single and double quotes, and I've tried backslashing and not backslashing the question marks. Where am I erring? Thanks. Dotan Cohen http://technology-sleuth.com/long_answer/what_are_the_advantages_of_lcd_monitors.html http://kubuntu.info -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Re: Removing UTF-8 from text

OTECTED])>%", $text, $matches); now print_r($matches[1]) and you see your addresses Hey, that's pretty good! Thanks. I'm going to go reread and remind myself why you used % instead of slashes. I should know that, but I don't. Thanks. Dotan Cohen http://dotancohen.com/howto/fi

Re: [PHP] Removing UTF-8 from text

gued by your regex. Why do you surround the needle with pipes, and what is the "ms" for? Dotan Cohen http://lyricslist.com/lyrics/artist_albums/336/mclachlan_sarah.html http://what-is-what.com/what_is/world_wide_web.html -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] How to read cookies set by php?

On 03/01/07, Richard Lynch <[EMAIL PROTECTED]> wrote: On Wed, January 3, 2007 9:02 am, Dotan Cohen wrote: > On 03/01/07, Richard Lynch <[EMAIL PROTECTED]> wrote: >> Configure the browser to prompt you before saving cookies, and then >> surf there again? > > FIr

Re: [PHP] Removing UTF-8 from text

omputer languages, not just php. Also, the Hebrew translation of the manual is very difficult for me to grasp, so I use the English version. That may not be a problem for you, but it is for me. Dotan Cohen http://what-is-what.com/what_is/eula.html http://tec

Re: [PHP] Removing UTF-8 from text

er the Hebrew one. I'll not argue with you, rather, I was making the point that even people who RTFM and STFA (like myself) need clarification and ask questions. Dotan Cohen http://dotancohen.com/eng/israel_attacks.php http://lyricslist.com/lyrics/lyrics/5/445/sepultura/schizophrenia.h

Re: [PHP] Removing UTF-8 from text

On 05/01/07, Richard Lynch <[EMAIL PROTECTED]> wrote: On Wed, January 3, 2007 2:41 pm, Dotan Cohen wrote: > On 03/01/07, Richard Lynch <[EMAIL PROTECTED]> wrote: >> Instead of trying to strip the UTF stuff out, try to capture the >> part >> you want: >>

Re: [PHP] Removing UTF-8 from text

s rather easy to stay physically fit as well, assuming that you run every day. However, I sit too many hours in the university library and not enough running nor coding regexes. So, my abilities in both are not what they should be. Thanks for bearing with me, though. Dotan Cohen http://what-is-what.com/

[PHP] Extracting XMP text from Jpeg

care of the house because the wife is nursing / study / work. Thanks in advance. Dotan Cohen http://lyricslist.com/lyrics/artist_albums/655/fozzy.html http://what-is-what.com/what_is/spyware.html

Re: [PHP] Re: Extracting XMP text from Jpeg

On 13/01/07, zerof <[EMAIL PROTECTED]> wrote: Dotan Cohen escreveu: > The birth of my first daughter has inpired me to get the photo gallery > on my site up to date. To do so, I need to extract XMP data from Jpeg > pictures. Here is a test pic: > http://dotancohen.com/gili.j

Re: [PHP] Extracting XMP text from Jpeg

On 13/01/07, tedd <[EMAIL PROTECTED]> wrote: At 2:40 AM +0200 1/13/07, Dotan Cohen wrote: >The birth of my first daughter has inpired me to get the photo gallery >on my site up to date. To do so, I need to extract XMP data from Jpeg >pictures. Here is a test pic: >http://dotan

Re: [PHP] Extracting XMP text from Jpeg

ith --enable-exif and my server wouldn't do it. tedd Good luck with that, then. I wish that I could give you SSH access to test, but the server is not my own, and I'm sworn to security! Dotan Cohen http://what-is-what.com/what_is/electromagnet.html http://dapot.com -- PHP Gene

Re: [PHP] Extracting XMP text from Jpeg

On 14/01/07, Bill Guion <[EMAIL PROTECTED]> wrote: At 8:05 PM +0200 1/13/07, Dotan Cohen wrote: > >Hehehe... Good thing that I didn't post a picture of Gush: >http://dotancohen.com/gallery/img-122.html > I presume Gush is an advanced computer mouse? -= B

Re: [PHP] Parsing mail file

On 30/01/07, Pierre Pintaric <[EMAIL PROTECTED]> wrote: If somebody uses a great function and want to share, I will please him... :-) Er, could you please define "I will please him"? I think that you've scared off a few potential helpers Dotan Cohen http://

Re: [PHP] Parsing mail file

properly. Thanks for being considerate, and always helpful. Dotan Cohen http://lyricslist.com/lyrics/artist_albums/20/aerosmith.html http://what-is-what.com/what_is/bluetooth.html -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP] Latin letter problem!

d any other information just ask! Thank you very much in advance! Change it all to utf-8, and watch your problems disappear! I've lots of experience with that in Hebrew website design. Note that you will need the server to specify the utf-8 encoding in the header. The metatag is not enough. D

Re: [PHP] Latin letter problem!

red on disk will display properly as well. http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd";> http://www.w3.org/1999/xhtml"; xml:lang="he" lang="he"> Dotan Cohen http://lyricslist.com/lyrics/artist_albums/5/112.html http://what-is-what.com/what_is

  1   2   3   4   5   6   >