to you when there is a problem. All they need to do
is document one instance where you don't follow the rules and they are
off the hook for damages. Guess where that puts you.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
it to a
different directory. Don't reuse the same file name, but add a numeric
value which increases every time you create it. Keep a log of which
files have been processed and any errors each one produced.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net
cellspacing=0 border=0 align=center
width=621
tr
td rowspan=2img width=15 height=1
src=../images/spacer.gif/td
You should install the HTML Validtor plug-in for Firefox and use it
regularly to catch all of the errors you can. Some of this can also be
replaced with style sheets.
Bob McConnell
From: Colin Guthrie
'Twas brillig, and Bob McConnell at 28/02/11 13:23 did gyre and gimble:
XHTML also requires all tags, attribute labels and values to be in
lower
case and values must be quoted. So your original content should be
table cellpadding=0 cellspacing=0 border=0 align=center
the following code:
// If magic quotes is on, we want to remove slashes
if (get_magic_quotes_gpc()) {
// Magic quotes is on
$response = stripslashes($_GET[$key]);
}
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
-in for Firefox to make sure
you are producing valid XHTML. That makes it so much easier to find
those invisible problems. I can't count how many times it has pointed
right at a logic flaw in my code.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http
From: Peter Lind
On 9 February 2011 14:57, Bob McConnell r...@cbord.com wrote:
From: Al
On 2/8/2011 4:58 PM, Donovan Brooke wrote:
Hello,
Just wanted to say thanks to those that helped me get through my
first PHP
project (over the last month).
As is with much of the work we server-side
and beyond those requirements to protect
yourself.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
public function
701 public static function
1 static function
1 static private function
10static protected function
60static public function
So, as mixed up as my own.
But it is good to know that at least the attributes are commutative. I was
never sure about that.
Bob
it!
Netbeans http://netbeans.org/index.html. Make sure you get the package
with the PHP plug-ins. There are a variety of different sets available.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
if (get_magic_quotes_gpc()) {
// Magic quotes is on
$response = stripslashes($_POST[$key]);
} else {
$response = $_POST[$key];
}
For future releases of PHP, this will also need a check to see if
get_magic_quotes_gpc() exists first.
Bob McConnell
--
PHP General Mailing List (http
don't recognize the back-ports. They need to see the newest
version numbers.
The end result is that we compile PHP 5.2.xx and install it on each
server in our leased farm every time there is a patch. The hosting
provider has blocked updates for the official builds from the CentOS
repositories.
Bob
for a project. When you use Drupal, you
start by setting up a Drupal server. Then you add your own pages or
maybe a custom module. The same goes for most of the other frameworks.
You start with the framework and develop your application within it.
Bob McConnell
--
PHP General Mailing List (http
isolated on our test networks for that. But even those
have to be managed directly. No application is allowed to do more than
retrieve data.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Mohammad Taghi Khalifeh
On Tue, Nov 30, 2010 at 10:38 PM, Bob McConnell r...@cbord.com wrote:
From: Mohammad Taghi Khalifeh
Hi there,
I have a package written in pure PHP, some .php files that refer to
others
via require_once(''),
but when I try to see package's contents via a browser
Guess I've not explained this very well.
The external page I am fetching using another curl script has asp query
hyperlinks in it. I do not know the variable names in each query or the
values they have.
All I want to do is replace the external url referenced in those links with
a url which is
Thanks to all for your interest so far but as I said, new to PHP. Changed
POST to GET and all now working fine!
Tommy, the third party site is fully aware of what I am doing. We pay them
to use the data, as do lots of other companies in our industry. Supplying
data is what they do. We could
First use of Curl so probably a very simple problem - I have a script which
loads a third party web page into my site. That page contains links which
have variable parameters i.e. www.blahblah.asp?param1=xxxparam2=yyy.
Any clues as to what I need to do to pass these parameters in a curl script
I already have a curl script that gets the web page, but it doesn't pass the
parameters
Being new to PHP I haven't the first idea how to modify it so that it does.
Script is as follows:
$url = http://www.xx.com/query.asp?param1=val1param2=val2;;
foreach ($_POST as $key=$post) {
for
developers. Unfortunately, neither of those technologies has
materialized.
(It's felt like Friday all day.)
It still feels like Monday here.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
of the 11 year sunspot cycle[1], and predictions of the next high are lower
than most cycles recorded over the past century[2]. So that one is not an easy
sell right now.
Bob McConnell
[1] http://www.windows2universe.org/sun/activity/sunspot_cycle.html
[2] http://solarscience.msfc.nasa.gov
messages that don't have valid
user names, expecting that set to be mostly SPAM. This created a new
problem where the legitimate senders no longer know when their mail
didn't get delivered due to a typo in the address.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit
be hired for any shop that I have ever worked in.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: ??
Is there any application like Google Doc(here I mean the spreadsheet).
What is your conception of like?
Have you looked at OpenOffice?
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
, or ...
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
comfortable in C, so I lean towards that for casual projects at
home.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
both already.
I don't know about HTML 5. Since that spec is still years away from
completion and hasn't added anything we can make use of, we haven't even
bothered to look at it.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
of the Java runtime environment, while
C# is a poor clone of the Java language. They were created after the
courts told Microsoft the Sun license did not allow them to subvert the
Java API to build applications that would only run on their OS.
Bob McConnell
--
PHP General Mailing List (http://www.php.net
sometime after they were added. i.e. the
gender assignment comes from a secondary source that is not available at the
time the patron is entered.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Peter Lind
On 24 September 2010 14:22, Bob McConnell r...@cbord.com wrote:
From: David Hutto
On Fri, Sep 24, 2010 at 4:09 AM, Gary php-gene...@garydjones.name wrote:
Daniel Kolbo wrote:
Say you have two classes: human and male. Further, say male extends
human. Let's say you have
From: chris h
On Fri, Sep 24, 2010 at 8:35 AM, Peter Lind peter.e.l...@gmail.com
wrote:
On 24 September 2010 14:22, Bob McConnell r...@cbord.com wrote:
From: David Hutto
On Fri, Sep 24, 2010 at 4:09 AM, Gary
php-gene...@garydjones.name wrote:
Daniel Kolbo
an elseif.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
create a new table using a predefined
schema. But unfortunately, he doesn't appear to know enough about the
problem to be able to explain it. He is either in way over his depth, or
hasn't done a very good job of defining his requirements.
Bob McConnell
--
PHP General Mailing List (http
From: tedd
At 2:23 PM -0400 9/24/10, Bob McConnell wrote:
A switch works when a single test can dispatch all possible branches.
If
you have a series of tests where each looks for a different subset of
conditions, you need an elseif.
Not so, O'wise one.
This will work:
switch(1
to remove
the extras, or to insert all of them in the first place?
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
, probably with an entry in his
Start directory to start it when he logs in. But he has to actually log
out of the desktop to block access, not just leave it in the screen
saver.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
be done is lying through their teeth and
will just be stealing his money. He probably deserves what he gets in
this case.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Did you mean to say That is a method call.?
Bob McConnell
-
From: Joshua Kehn
That is a function call. In Java:
class Code
{
public static void function do_command(){ }
}
Code.do_command();
Regards,
-Josh
Joshua Kehn | josh.k
. If it is
correct, it may actually fix the bare LF's for you.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
working on the rest of your list.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
are only sending a LF.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
considering hiring a consultant
to walk you through this process the first time. It could save you a lot
of mistakes, time and money.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
doesn't know or care if you want two
bits or 128, so neither can PHP. If you are only interested in the lower bits,
you need to mask your answer to throw away the rest. For example, doing a
bitwise AND with 3 will discard all but the last two bits, 7 will give you the
last three bits, etc.
Bob
with the OWASP[1] recommendations as
early as possible. They have a variety of tried and tested functions for
this very purpose. You can use them as is, as models or as frameworks
for your own variations on the theme.
Bob McConnell
[1] http://www.owasp.org/index.php/Main_Page
--
PHP General Mailing List
that will collide with a given hash.
That's a simple matter of brute force, which can be done once and saved
for instant use later. However, putting a salt into your algorithm
pretty much eliminates the chances of success using that attack.
Bob McConnell
--
PHP General Mailing List (http://www.php.net
is misconfigured. The browser will simply display
it as it would HTML. It doesn't know PHP from plain text. Actually, the
browser could not process PHP, since most of the resources needed are
still on the server.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit
when
viewing pages translated from other languages into English, or pages
generated by any number of Wikis and template packages. UTF is still a
quagmire of incompatible font sets.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
, /home/httpd or
/usr/lib/httpd. If worse comes to worst, try
ps ax | grep httpd
to see if you can find the path from the original start up in the init
process.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
to protect the credit card issuers. You need to figure out
how far you need to go in order to protect your client.
Bob McConnell
[1] http://www.owasp.org/index.php/Main_Page
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Richard Quadling
Quick set of eyes needed to see what I've done wrong...
The following is a reduced example ...
?php
$Set = array();
$Entry = 'Set[1]';
^^
Shouldn't that be $Set[1]?
$Value = 'Assigned';
$$Entry = $Value;
print_r($Set);
?
Bob McConnell
--
PHP
those components packaged in an easy to manage kit.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
on an unsuccessful attempt more than 30 minutes after the
previous attempt.
The error message is the same for all login failures, no matter what the
cause.
While logged in, if a page is requested with the value of u_touch more
than ten minutes old, the user is automatically logged out.
Bob McConnell
compile 5.2.13 just to pass our PCI audits.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Per Jessen
Bob McConnell wrote:
In chronological order -
Languages: [snip] C++ (Still don't
understand the purpose of objects or classes).
Two words - encapsulation and abstraction.
Both of which are euphemisms that simply mean obfuscation. I learned
very early in my
Fortran compiler I used in 1968.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
the password the user´s got in /etc/shadow file.
Anyone knows why?
I believe you forgot the salt. Traditionally, Unix adds an additional value to
the password before it is encrypted. I don't know where that comes from.
Bob McConnell
--
PHP General Mailing List (http://www.php.net
, and there are
other similar resources for other languages. I haven't found the like
for PHP yet.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Ricardo Martinez
i want ask to the list, if anyone knows a FIle Manager with ACL,
written in
PHP and MySQL.
Dokuwiki doesn't require a DBMS, but can use MySQL if you really need to
shoehorn it in.
http://www.splitbrain.org/projects/dokuwiki
Bob McConnell
--
PHP General Mailing List
, there may be requirements agreed upon or required in that
environment. You may not find out about them until your first code
review, but be assured, you will eventually be told about them.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net
eight times?
CentOS is Red Hat minus the proprietary elements, so you actually have
two releases of the same OS here. The bigger question is what version of
PHP are you running on each of them and how are they configured?
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe
,
not in the httpd server. You need to check to see how your PHP command
line is configured, it may need the full tag no matter how the server is
set up.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
on the back end, but those are stored as a shell database and sets
of patch files for each build.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
if validation
fails.
}
}
else {
// Issue form with initial data
}
-8---
You should also check in the Save option to see if anything was actually
changed. The record shouldn't be updated if nothing was edited.
Bob McConnell
see
that id is now a core attribute, i.e. it is available for all but a
handful of tags, while name is only available for the tags where it is
explicitly included. So it still appears to me that id is the preferred
attribute, as it is more generally available.
Bob McConnell
--
PHP General Mailing
and will likely be undergoing major changes for
several more years.
Bob McConnell
-8
4.10. The elements with 'id' and 'name' attributes
HTML 4 defined the name attribute for the elements a, applet, form,
frame, iframe, img, and map. HTML 4 also introduced
From: tedd
At 10:53 AM -0400 7/2/10, Bob McConnell wrote:
This discussion began when I pointed out that the name attribute is
deprecated in XHTML. This was later confirmed when someone pointed to
the actual specification at http://www.w3.org/TR/xhtml1/, however
there may be some confusion
been replaced by 'id' almost everywhere. They
actually recommend you put both attributes into tags with identical
values until your applications can be updated to drop all uses of the
name attribute.
http://www.w3schools.com/tags/default.asp
Bob McConnell
--
PHP General Mailing List (http
From: Peter Lind
On 1 July 2010 14:38, Bob McConnell r...@cbord.com wrote:
From: Adam Richardson
On Wed, Jun 30, 2010 at 9:16 PM, David Mehler
dave.meh...@gmail.com
wrote:
Hello,
I've got a php form processing question. I've got a text field like
so:
div
label for=txtnameName*:/label
. Then
you can review the logs and make the necessary adjustments.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
From: Daevid Vincent
Why do this in_array() business??
Just do this...
if (self::$aboveArray[$name])
{
//something interesting here
}
Does that gibberish actually do something? It doesn't make any sense to
me, while in_array() actually looks like what it does.
Bob McConnell
From: Peter Lind
On 25 June 2010 19:58, Bob McConnell r...@cbord.com wrote:
From: Daevid Vincent
Why do this in_array() business??
Just do this...
if (self::$aboveArray[$name])
{
//something interesting here
}
Does that gibberish actually do something? It doesn't make any sense
will actually work?
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
of numbers exceed the storage space
allotted. It's well understood in tightly typed languages, but often
missed in the more loosely typed languages like Perl and PHP.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
= str_replace((r),,$mystring);
I tried replacing the symbol in the above syntax with the HTML
equivalent but no luck.
It depends on what you want it for. For a URL, the HTML encoding is
'reg;' '#174;' or '%AE'.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http
, and this is
mostly a port of them into PHP. In addition to that, I have written my
own db_dummy.php to emulate the PostgreSQL library in PHP.
I have no class, so the OOP test modules are of no use to me. After 40
years of procedural programming, I simply cannot see anything as
objects.
Bob McConnell
--
PHP
to your user
table and set one of them when they fill out the form. Don't show them
the form after it is set. Having a couple, you can do a couple of
questionnaires simultaneously, and clear the matching flag when you
close the form.
Bob McConnell
-Original Message-
From: Juan Rodriguez
.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
write privileges for those files and directories?
Are they tracked via a content management system?
Who last wrote to them?
Can you further restrict who is allowed to write into those files and
directories?
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http
a database is to back it up on the original
server, then restore it on the new one. That way all system tables would
be correctly updated by the server.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
the port number.
How did you install the first server? Was it part of the java install or
did one of the other packages you installed put it there? Do you still
have the documents for that package with the default users and
passwords?
Bob McConnell
--
PHP General Mailing List (http://www.php.net
.
Bob McConnell
Ref: pp 25-29 The Programmer's PC Sourcebook, 1988, Thom Hogan, Microsoft Press
, no exception, not even a
whimper. Recording a basic file not found message in the error log
would be a major improvement.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
to have to deal with two competing
specifications, when one of them is more than adequate for the job and
the other is not even finished yet. That's like the old days when a few
users demanded we support both ASCII and EBCDIC. That didn't get very
far either.
Bob McConnell
--
PHP General Mailing
to work around it using Javascript, but that will only
work for people that don't know enough to disable that primary infection
vector for malware.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
from \\xxx.xxx.xxx.xxx\scriptdir\
to c:\scriptdir\ then it's work !!
everything work good EXCEPT the @EXEC command ...
Is 'C:\Program Files\PHP' in your PATH? You may need to add that
manually.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http
From: loki
On 5/24/2010 11:31 PM, Bob McConnell wrote:
From: loki
PHP is installed in c:\program files\php
the PHP script are in network drive \\xxx.xxx.xxx.xxx\scriptdir\
in the PHP script, we try to launch the command @exec(...) with a
executable located in c:\program files\ourexecutable
is expecting
ASCII, while the other is sending UTF-8, there may be the occasional
multi-byte value that gets scrambled.
On the other hand, I may be way out in left field.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
is actually in those 'empty' lines?
Does that regular expression work correctly on UTF-8 input?
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
security tests before it goes online. It´s not
actually working in production environment, but it´s ready to use it.
You probably want to start by looking at the OWASP project.
http://www.owasp.org/index.php/Category:OWASP_Project
Bob McConnell
--
PHP General Mailing List (http://www.php.net
and the chair after they log in. Plus, it is
unlikely that will be useful in a true multi-user environment. There are
simply too many possible ways to get around your restrictions.
Bob McConnell
-Original Message-
From: Jagdeep Singh [mailto:jagsaini1...@gmail.com]
Sent: Friday, May 14, 2010
as well. You may not need to
reinvent this particular wheel.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
look at the documentation for html entities and
magic quotes to see what is and is not allowed in a URL. There are a
number of characters that may be modified by either the browser or the
server before you get your hands on them.
Bob McConnell
--
PHP General Mailing List (http://www.php.net
From: Robert Cummings
Bob McConnell wrote:
Web servers can only identify computers, not users. You will need
something else to track which user started a specific application on
a
particular computer, probably a fingerprint scanner next to the
keyboard. But that won't prevent someone else
From: Richard Quadling
On 14 May 2010 14:47, Bob McConnell r...@cbord.com wrote:
Actually, I believe that linking a session to a specific individual
without reading a biometric key with every http request is an
unacceptable risk. And no, I don't do any banking online.
That's why my bank has
, the
other to receive. Only occasionally does a protocol require alternating
messages similar to a conversation or ping-pong match.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
need to get some more from him when he gets
back from Baghdad next month.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
. It is the conversion into float
that introduces the error because of the imprecise representation of
fractional decimal values in binary.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
the ramifications of old data in other tables that may be
inherited when new rows are assigned a deleted ID.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
as part of
the registration process and control that check box themselves.
Bob McConnell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
variations that way.
Javascript is definitely out. Only a fool or an imbecile intentionally
enables primary malware infection vectors like that. I believe Firefox
should install the NoScript add-on by default with maximum protection
enabled.
Bob McConnell
--
PHP General Mailing List (http
1 - 100 of 629 matches
Mail list logo
