Re: perl cgi security
nothing that will work on Linux box? Admin-Stress wrote: > Nice, but that will produce .exe, executable file for Windows :( > > --- David Simcik <[EMAIL PROTECTED]> wrote: > > See perl2exe.exe for details on converting scripts into executables. > > > > -D > > __ > Do you Yahoo!? > Y! Web Hosting - Let the expert host your web site > http://webhosting.yahoo.com/ > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: perl cgi security
Isn't there a method of actually making an executable (compiled) out of a perl script? I heard/saw about is a year or so ago, but never investigated it. I'd be interested in finding out more if anyone has info. Thanks fliptop wrote: > On Sun, 27 Oct 2002 at 14:10, Admin-Stress opined: > > A:Is it possible to VIEW the source code of a perl cgi from a website? > > sure, if your httpd server is improperly configured. > > A:For example, I wrote a perl cgi like this > A:http://www.myweb.com/cgi-bin/addcustomer.pl > A: > A:The purpose of that script is to add new customer into my MySQL database. > A: > A:So, is it possible that some one can download that script? Like using > A:'web site downloader' or 'dump' or any other method? > A: > A:If yes (possible), is there any way to prevent this? or to hide the cgi > A:source code? > > perldoc -q 'hide the source' > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
pop-up window with database access
Hello, I'm creating a web site for our department at my school. We have a sign-up form for a society that people can join. I want to create a MySQL database of university names and allow the user to click on a "Lookup" button on the sign-up form when they get to the field "University Affiliation" and the pop-up window would then go out and get a list of universities in the database and allow them to select the university they are with, then the selected value would be put in the correct text box on the main page form. I would guess that JavaScript is involved, but I don't know. Any help (detailed help!) would be very much appreciated by many students and professors from around the world! Jimmy James -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
embed Perl in HTML
I use Dreamweaver and would like to embed Perl code within my HTML, much like one would embed PHP code within HTML, and still be able to visually manipulate my HTML/Perl file with Dreamweaver.Any suggestions? Thanks -Jim -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Compiling a CGI program
i don't know the answer, but i hope if someone does that they will share it. i need to learn how to compile my scripts... i'm on a red hat 7.x box, but i do manage a couple of other linux-type servers that don't use red hat... my hope it that i can create something that is portable (even if only to a closely related environment)!?!?-jim Octavian Rasnita wrote: > Hi all, > > I've tried (without success) to compile a CGI application made in Perl using > perlcc. > > I've tried then a test program but it also doesn't want to compile. > > The program is: > > #!/perl/bin/perl > > print "Content-type: text/html\n\n"; > print "Test OK"; > > I use Visual Studio 6 under Windows 2000. > > Can I make a Windows executable using perlcc? > > Can you give me hints about what should I do to make the executable? > > When trying to compile this small program, it made a file a.out and another > ..obj file but I don't know what to do with these files. > I've tried using the -B parameter to compile directly, but it gave me a lot > of assembly errors. > > When trying to compile a bigger one, it made a .c file then the program > continued to work for a long time with no result. > It made a .out file but its size was 0. > > Thank you very much for any hint. > > Teddy, > My dear email address is [EMAIL PROTECTED] > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to make a hyperlink an argument for a CGI script
use CGI;
$form = new CGI;
The example in my first email had an error... (this is a short version of an
email I sent back to David directly)...
"Nazary, David" wrote:
> Jim,
>
> In a web page I have a list of names (ClearCase VOBs) that I like to link to
> a single script. When I click on any one of those names they should become
> an argument to that script. The script will then fetch certain data (Epoch
> numbers) for that name.
>
> I think what you and Rasnita suggested may very well be the solution but now
> I have to install the package "new" as I got some error to that effect.
>
> Thanks again.
> David
>
> -Original Message-
> From: Jim Lundeen [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, September 01, 2002 8:44 PM
> To: Nazary, David
> Subject: Re: How to make a hyperlink an argument for a CGI script
>
> i'm not sure that i understand what you are asking. are you asking how to
> pass field values in to a perl script from a text link?
>
> if so,
>
> Foo
>
> Within the scipt,
>
> use CGI;
> $form = new->CGI;
>
> $field1= $form->param("field1");
> $field2= $form->param("field2");
>
> etc...
>
> "Nazary, David" wrote:
>
> > Hi,
> >
> > In the following web page how can I make "foo" to become an argument to
> > "cgi-bin\script.pl" script when I click on "foo"?
> >
> >
> >
> > foo
> >
> >
> >
> > Currently the script takes "" as an argument when I click on "foo". Any
> > suggestion are appreciated.
> >
> > Thanks
> > David Nazary
> >
> > --
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
>
> --
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Question about dates
Here's a piece of code from a script I wrote for our jewelry store that looks to
see if the promotional discount code is still valid... I don't see any reason
why Felix's method wouldn't work either; it's doing pretty much the same thing
as mine...
$mysql_query=qq{SELECT CURRENT_DATE-DATE_FORMAT(VALID_TO,'%Y%m%d') from
discount_codes where discount_code='$DISCOUNT_CODE'};
$sth = $dbh->prepare ("$mysql_query");
$sth->execute();
$EXPIRED=$sth->fetchrow_array();
$sth->finish();
if ($EXPIRED <= 0) {$EXPIRED="N";}
if ($EXPIRED > 0) {$EXPIRED="Y";}
Soheil Shaghaghi wrote:
> Hi everyone,
> I am trying to do some calculations based on the date the users have
> registered with the site.
>
> I want to sell a service.
> I have a form where the user comes to purchase the service.
> I can get the date from SQL database in any format and display it in form.
>
> At this point, when the user fills out the form and submits it, I want to
> look at the date.
> If the date is before August of 2002, the price should be set to $25.00, and
> if it's after August of 2002, it will be $50.00
>
> Can anyone tell me how I can do this please?
>
> Note: The form does not use SQL itself. It's just CGI.
>
> Thanks
>
> --
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
Re: Online installer
i think you are going to find it very difficult to successfully accomplish this goal. there are going to be subtle differences among the various remote servers, all of which you would have to somehow take into account and handle. you most certainly would need to have your installer program locate the location of Perl on the remove server, and probably other things too...good luck and please keep us (or me at least) posted, as i am always interested in a good challenge and how it has been handled!i'm actually working on a very sophisticated script right now, one that a member of this mailing list stated that could be done. So don't let me or anyone else dissuade you from your goals! Almost anything is possible with careful planning... -Jim Soheil Shaghaghi wrote: > Hi, > The programs are located on a website, and I want to offer this as a remote service, >where anyone can basically use to install it on their server. They might or might not >be on the same server. > > Thanks, > Soheil > > -Original Message- > From: Connie Chan [mailto:[EMAIL PROTECTED]] > Sent: Saturday, August 17, 2002 9:49 PM > To: [EMAIL PROTECTED]; [EMAIL PROTECTED] > Subject: Re: Online installer > > > Hello everyone, > > Can anyone tell me how to create an online cgi installer? > > Details: > > I have a program that want to install on my user's website upon their > > request. > > Where are those 'website' located ? Do you mean you > need a configurator at your local(server) side ? > > > What I am looking for is some kind of form which the user fills out entering > > their ftp username/password, the directory where they want the program to be > > installed, the name of the directory, and some variables, like the color of > > the page, admin password, which will directly be inputted into the script > > after the installation is completed. > > Or you mean some remote control services ? > > Rgds, > Connie > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
mysql problem
ok, i just setup a new server (redhat 7.3) and my guy says that the
dbd/dbi stuff is configured for perl-to-mysql connectivity, but i get
the following error message in my error log each time i try to run a
script from either the command line or via the browser:
---
install_driver(mysql) failed: Can't locate DBD/mysql.pm in @INC (@INC
contains: /usr/lib/perl5/5.6.1/i386-linux /usr/lib/perl5/5.6.1
/usr/lib/perl5/site_perl/5.6.1/i386-linux /usr/lib/perl5/site_perl/5.6.1
/usr/lib/perl5/site_perl/5.6.0 /usr/lib/perl5/site_perl
/usr/lib/perl5/vendor_perl/5.6.1/i386-linux
/usr/lib/perl5/vendor_perl/5.6.1 /usr/lib/perl5/vendor_perl .) at (eval
3) line 3.
Perhaps the DBD::mysql perl module hasn't been fully installed,
or perhaps the capitalisation of 'mysql' isn't right.
Available drivers: ExampleP, Pg, Proxy.
at /home/domaincentric/mcp/www/menu.cgi line 13
---
perhaps my script is the problem? here's some sample code:
---
$cgi = new CGI;
$DSN = "DBI:mysql:database=mcp";
$dbh = DBI->connect($DSN, "theusername",
"thepassword") or die "Unable to connect to the Control Panel
database(s)";
$mysql_query= qq{SELECT ITEM_ID, ITEM_NAME, SECURITY_LEVEL FROM
menuitems WHERE ACTIVE='Y' AND CATEGORY='$CATEGORY' ORDER BY ITEM_NAME
ASC};
$sth = $dbh->prepare("$mysql_query");
$sth->execute();
while($ref = $sth->fetchrow_hashref())
{
$ITEM_ID = $ref->{'ITEM_ID'};
$ITEM_NAME = $ref->{'ITEM_NAME'};
...
}
$sth->finish();
if anyone has suggestions, please advise. thanks!
jim
Re: Checking Form data
on a side note: does anyone know the % of people that actually disable javascript in their browser? can javascript actually be used to harm (lets pretend those annoying pop-up windows don't count!)? i'm not really a hard-core javascript person, so any stats that you have would be interesting and helpful... thanks! "Kipp, James" wrote: > Thanks for the reference. but as ealier mentioned , java script can be > filtered out or shut off at the browser. i went ahead and made a validation > routine in the CGI itself with regex and other tests. > > > -Original Message- > > From: John Griffiths [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, July 31, 2002 1:20 PM > > To: Kipp, James > > Cc: '[EMAIL PROTECTED]' > > Subject: Re: Checking Form data > > > > > > Although Perl/CPAN makes some good form handling modules > > available I think that the more client side data checking you > > can do the better. For date input I'd go with javascript, and > > I'd use an input calendar to control the data. See, for > > example, a prototype I'm working on at > > http://www.southwindssailing.com/pressgang/ which uses a nice > > javascript/DHTML input > > calendar by Lea Smart (www.totallysmartit.com). > > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Post to a second CGI script
Ok, perhaps not the most eloquent of methods, but here's what I did (putting my
little knowledge of JavaScript to use!)...
sub loadmenu
{
print <
LOADMENU
exit;
}
So basically, my 1st CGI prints this form to the user's browser and in the same
split second the Javascript does an "auto-submit" function so that the user
never knows that the form was displayed (it wasn't actually, the fields were
all hidden)...
Thanks for your input David & Troy...
David T-G wrote:
> Jim --
>
> ...and then Jim Lundeen said...
> %
> % Hello All,
>
> Hi!
>
> %
> % I have 2 scripts. One accepts 3 values LOGIN_USERNAME, LOGIN_PASSWORD
> % and ACTION from an HTML form. That script looks in a user table in
> % MySQL to verify the user. If valid, it passes them to MENU.CGI with
> % LOGIN_USERNAME and a unique session number (USN).
>
> Good enough.
>
> %
> % Here's the question: How to I "post" the LOGIN_USERNAME and USN to the
> % MENU.CGI script? I don't want the user "carrying" the info around in
> % the "Location" bar as "?USN=1234&LOGIN_USERNAME=somebody" -- I want it
>
> Right. That would be ugly.
>
> % to be part of the user's Perl process if you know what I mean, so that
> % if they hit RELOAD the values are still with them. Too, I don't want
> % someone trying to modify the info if it were in the "Location" bar, so
> % it needs to be a part of the "post."
>
> I can never remember which is POST and which is GET, but just have your
> script pass the data over to MENU.CGI (are you on a Win machine, BTW, or
> do you ALWAYS SHOUT? ;-) in the environment as that-which-is-not-the-url
> method does.
>
> %
> % Any advice would be much appreciated!
>
> HTH & HAND
>
> %
> % Thanks!
> %
> % Jim
> %
>
> :-D
> --
> David T-G * It's easier to fight for one's principles
> (play) [EMAIL PROTECTED] * than to live up to them. -- fortune cookie
> (work) [EMAIL PROTECTED]
> http://www.justpickone.org/davidtg/Shpx gur Pbzzhavpngvbaf Qrprapl Npg!
>
>
>Part 1.2Type: application/pgp-signature
Re: Post to a second CGI script
Thanks. I thought of that, but I need to accommodate those who have disabled Cookies on their browser. This script is going to be used in a high traffic web site with many different types of browsers and configurations thereof, so I need to keep things very basic when it comes to interacting with the user. Thanks! Troy May wrote: > Use cookies. > > -Original Message- > From: Jim Lundeen [mailto:[EMAIL PROTECTED]] > Sent: Monday, July 29, 2002 5:06 PM > To: begin begin > Subject: Post to a second CGI script > > Hello All, > > I have 2 scripts. One accepts 3 values LOGIN_USERNAME, LOGIN_PASSWORD > and ACTION from an HTML form. That script looks in a user table in > MySQL to verify the user. If valid, it passes them to MENU.CGI with > LOGIN_USERNAME and a unique session number (USN). > > Here's the question: How to I "post" the LOGIN_USERNAME and USN to the > MENU.CGI script? I don't want the user "carrying" the info around in > the "Location" bar as "?USN=1234&LOGIN_USERNAME=somebody" -- I want it > to be part of the user's Perl process if you know what I mean, so that > if they hit RELOAD the values are still with them. Too, I don't want > someone trying to modify the info if it were in the "Location" bar, so > it needs to be a part of the "post." > > Any advice would be much appreciated! > > Thanks! > > Jim > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Post to a second CGI script
Hello All, I have 2 scripts. One accepts 3 values LOGIN_USERNAME, LOGIN_PASSWORD and ACTION from an HTML form. That script looks in a user table in MySQL to verify the user. If valid, it passes them to MENU.CGI with LOGIN_USERNAME and a unique session number (USN). Here's the question: How to I "post" the LOGIN_USERNAME and USN to the MENU.CGI script? I don't want the user "carrying" the info around in the "Location" bar as "?USN=1234&LOGIN_USERNAME=somebody" -- I want it to be part of the user's Perl process if you know what I mean, so that if they hit RELOAD the values are still with them. Too, I don't want someone trying to modify the info if it were in the "Location" bar, so it needs to be a part of the "post." Any advice would be much appreciated! Thanks! Jim -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Displaying counter
thank you!!! fliptop wrote: > Jim Lundeen wrote: > > > I have the following in my HTML output: > > > > > >> the message to actually show the active counter... 600 changes to 599, > > then 598, and so on... > > there's a script available from http://javascript.internet.com that does > this very thing. i've used it and it works very well. > > -- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Displaying counter
Hello all, I know this probably isn't the appropriate list for my question, but I don't want to receive email on other lists too! So, if you know the answer, I'd appreciate your help... I have the following in my HTML output:
cost of setting up a linux server
hello all, i presume many of you are using a linux box. i am interested in setting up a web server that will host about 50 domains. i have called covad (the sdsl provider) and received pricing for the sdsl line. i am wondering about how much (if there is a avg) it will cost to get this going. i am having a friend build a computer for me, so i know how much that will cost. i am just wondering about how much i should be paying to have someone install linux and get everything configured and up and running on my new dsl line. i am not a complete newbie to linux, i have worked on a linux server for the last 2 years. but i didn't set it up, so i don't know about the costs associated with the setup. i would appreciate hearing from you guys. thanks! jim -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
