On 29 September 2011 23:28, PHProg wrote:
>
> Hello Richard,
>
> Your suggestion worked perfectly.
> ... it works beautifully.
Now that's what I like to hear!
Glad to be of help.
--
Richard Quadling
Twitter : EE : Zend : PHPDoc
@RQuadling : e-e.com/M_248814.html : bit.ly/9O8vFY : bit.ly/lFnVea
Hello Richard,
Your suggestion worked perfectly.
Basically, I just copied and pasted your example
and with a few, very minor adjustments, it works beautifully.
Many thanks for your help.
All the best.
At 08:43 AM Thursday 9/29/2011, Richard Quadling wrote:
On 29 September 2011 13:30, PHPro
On 29 Sep 2011 at 13:30, PHProg wrote:
> I'm trying to create a standard web form that will use a PHP script
> to copy a file from one server to another.
[snip]
> if(!@copy('http://mydomain.com/files/".$_POST['trakname']."','/".$_POST['dirna
> me']."/".$_POST['trakname']."'))
This line:
On 29 September 2011 13:30, PHProg wrote:
> if(!@copy('http://mydomain.com/files/
>
> ".$_POST['trakname']."','/".$_POST['dirname']."/".$_POST['trakname']."'))
> {
> $errors= error_get_last();
> echo "COPY ERROR: ".$errors['type'];
> echo "\n".$errors['message'];
> } else {
> echo "Fi
Ashley Sheridan wrote:
> On Thu, 2009-10-22 at 21:32 -0400, PJ wrote:
>> I have several input fields to update a book database. There seems to be
>> a conflict in the way tags and text are input through php/mysql and
>> phpMyAdmin. If I enter the data with phpMyAdmin the input fields in the
>> php
On Thu, 2009-10-22 at 21:32 -0400, PJ wrote:
> I have several input fields to update a book database. There seems to be
> a conflict in the way tags and text are input through php/mysql and
> phpMyAdmin. If I enter the data with phpMyAdmin the input fields in the
> php page see quotation marks dif
Ronald Wiplinger wrote:
I added just into a input field"
19" enclosure
which was displayed from the database as:
19\" enclosure
That gives me some questions:
1. where the protecting slash comes from?
Probably magic_quotes_gpc
2. how can I get it away when I want to display that field?
1.Probably that's because the function mysql_real_escape_string() is turned on.
You can check that in your php.ini configuration.
2. If you want to display them as you wanted, you can use stripcslashes() on
your output contents.
3. Maybe phpmyadmin automatically stripped that out.
And
1. Any
Save us a lot of grief and just use PHP built-in sessions until you
can prove them to not meet your needs.
On Sat, February 24, 2007 7:48 pm, benifactor wrote:
> i would like your input on session vs cookies regarding login data
> like usernames/passwords ect...
--
Some people have a "gift" l
On Sat, 2007-02-24 at 20:05 -0800, benifactor wrote:
> as of right now, when the user logs in, i have a cookie storing username...
> then on all of the pages i need data i have it query the database and using
> the cookie data to retrieve user information.. is there a more secure way to
> do this?
as of right now, when the user logs in, i have a cookie storing username...
then on all of the pages i need data i have it query the database and using
the cookie data to retrieve user information.. is there a more secure way to
do this?
--
PHP General Mailing List (http://www.php.net/)
To unsubs
i would like your input on session vs cookies regarding login data
like usernames/passwords ect...
usernames/passwords ? Session yes, cookies no.
tedd
--
---
http://sperling.com http://ancientstones.com http://earthstones.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscr
On Sat, 2007-02-24 at 17:48 -0800, benifactor wrote:
> i would like your input on session vs cookies regarding login data like
> usernames/passwords ect...
How are you differentiating sessions vs cookies? Sessions are often
implemented USING cookies. If you mean sessions using a session ID in
the
Warren Vail wrote:
> I would be interested to know what might get past the
> addslashes function that the mysql_escape_string function
> catches.
I wrote an example to demonstrate this:
http://shiflett.org/archive/184
The theory behind this type of problem is pretty easy to understand - if
your
Richard Lynch wrote:
> On Thu, August 10, 2006 1:54 pm, Jochem Maas wrote:
>> Warren Vail wrote:
>>> Many of the older PHP implementations don't have the
>>> mysql_escape_string
>>> function, if not addslashes should work
>> this is true.
>>
>>> I would be interested to know
>>> what might get
On Thu, August 10, 2006 1:54 pm, Jochem Maas wrote:
> Warren Vail wrote:
>> Many of the older PHP implementations don't have the
>> mysql_escape_string
>> function, if not addslashes should work
>
> this is true.
>
>> I would be interested to know
>> what might get past the addslashes function
; Cc: 'João Cândido de Souza Neto'; php-general@lists.php.net
>> Subject: Re: [PHP] INPUT
>>
>> Warren Vail wrote:
>>> Just happened to think of one other thing you might want to
>> be aware
>>> of;
>>>
>>> When a query behaves
Warren Vail wrote:
> Just happened to think of one other thing you might want to be aware of;
>
> When a query behaves like this, your site is usually vulnerable to the "Sql
> Injection Hack". Basically this is where someone sticks an insert query
> into one of your data form fields (quotes are i
rom: Jochem Maas [mailto:[EMAIL PROTECTED]
> Sent: Thursday, August 10, 2006 11:31 AM
> To: Warren Vail
> Cc: 'João Cândido de Souza Neto'; php-general@lists.php.net
> Subject: Re: [PHP] INPUT
>
> Warren Vail wrote:
> > Just happened to think of one othe
Warren Vail wrote:
> http://us3.php.net/manual/en/function.addslashes.php
adding a slash to a quote char that is part of an html tag's attribute's
value is not the correct way to encode the quote (actually it's not correct
anywhere in an html document) - although I wouldn't be surprised if it work
Just happened to think of one other thing you might want to be aware of;
When a query behaves like this, your site is usually vulnerable to the "Sql
Injection Hack". Basically this is where someone sticks an insert query
into one of your data form fields (quotes are involved), and the additional
João Cândido de Souza Neto wrote:
> Hi everyone,
>
> Excuse me by off-topic.
why; are you writing the app in ASP or something? ;-)
>
> I´ve been a little trouble in showing data in html form.
>
> e.g.: In a e-commerce my client have a "Sony 29" TV" that when i put it in a
> input value, it see
http://us3.php.net/manual/en/function.addslashes.php
Good luck,
Warren Vail
> -Original Message-
> From: João Cândido de Souza Neto [mailto:[EMAIL PROTECTED]
> Sent: Thursday, August 10, 2006 11:11 AM
> To: php-general@lists.php.net
> Subject: [PHP] INPUT
>
> Hi everyone,
>
> Excuse
I think the attribute is called maxlength but i'm not sure, oh well add the
maxlength attribute to your input tag to have a quick, clean
non-javascript-realiant solution
On 1/12/06, John Meyer <[EMAIL PROTECTED]> wrote:
>
> Stut wrote:
> > Ok, you're clearly missing my point and while I don't wa
Stut wrote:
Ok, you're clearly missing my point and while I don't want this to
degrade into the usual pissing contest I do feel I need to clarify
what I was saying.
I completely agree that in this case Javascript should be used to
provide the user with feedback as to how close to the limit th
[EMAIL PROTECTED] wrote:
I disagree... PHP frequently involves interacting with or outright using
alternative technologies to accomplish your goal. This includes HTML, XML,
databases, etc. To effectively use PHP you need to understand your options and
the pros/cons in using the other techn
[EMAIL PROTECTED] wrote:
Hmm.. I didn't see anyone ask "before or after the user clicks SUBMIT"?
Probably because this is a PHP list and nothing that happens on the
client side is a) controllable by PHP or b) guaranteed. Whatever you do
on the client side you should always validate anythi
Hmm.. I didn't see anyone ask "before or after the user clicks SUBMIT"?
If it's before, then you should use javascript to check the form element prior
to submitting (you can check realtime with the onkeydown, onkeyup events...
check after a user moves off of the form element with onchange or ev
On Thu, 12 Jan 2006 16:56:43 +0200
"William Stokes" <[EMAIL PROTECTED]> wrote:
>
> Hello,
>
> I need to check that user input text is less than 300 characters
> long. How?
if(strlen($UserInputText) > 300){
echo("Too long");
}
See http://www.php.net/manual/en/print/function.strlen.php
R
I need to check that user input text is less than 300 characters
long. How?
if (strlen($_POST['input']) < 300) { ...
You may want to also apply trim() to the input text to get rid of
extraneous white space at the beginning and end of the input.
Larry
--
PHP General Mailing List (http://ww
William Stokes wrote:
> Hello,
>
> I need to check that user input text is less than 300 characters long. How?
>
> Thanks
> -Will
>
Try with strlen:
http://php.net/strlen
Silvio
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[snip]
I need to check that user input text is less than 300 characters long. How?
[/snip]
string length, it's in the manual.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
> > setting a VALUE="path/file" but that
> > does not work.
> As far as I know, you
> can't set the initial values for 'file' inputs.
> It's a security thing.
H, you're right,saw the same thing on google after digging a little
deeper, thanks mate.
Cheers,
Ryan
--
PHP General Mailing Li
Ryan A wrote:
Hey,
Heres what I am doing, I have a form where a user can enter values and in
the form I have a FILE box so the
user can upload her pic, if she screws up anywhere (eg: putting an alphabet
in her date of birth) I send her back
to the form and her date of birth gets highlighted plus
Rajesh Batchu wrote
_outputStream.flush();
_outputStream.close();
// receive response
_inputStream = new DataInputStream(new BufferedInputStream(_httpsConnection.getInputStream()));
OT: if you close the outputstream from URLConnection you will not be
able to read the
Rajesh Batchu wrote:
Hi,
I have a page with SSL enables as below.
https://email.website.com/usrfolder/one.php
For this page, my customer is posting some XML data using a java output stream as below. ( pseudo code)
URL url = new URL(_url);
_httpsConnection= (HttpsURLConnectio
--- Pablo Gosse <[EMAIL PROTECTED]> wrote:
> It's obviously best practice to rigorously check and validate all input
> coming via $_GET or $_POST, but what about $_SESSION values?
Session data can be considered safe, but there are of course caveats. It
is not possible for the user to manipulate se
PHP is server side, it has nothing to do with client side, aside from
server up some information. You can, and should, validate the input
using PHP after it is submitted.
For client side validation you would need to use javascript. You can do
what you are trying to do in javascript, but it will
Javascript is your answer.
Cheers,
-Ryan
We will slaughter you all! - The Iraqi (Dis)information ministers site
http://MrSahaf.com
- Original Message -
From: "Bobpilly" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, September 12, 2003 11:20 AM
Subject: [PHP] input field mask
http://www.interactivetools.com/products/htmlarea/
this is not concerning php but javascript
-Mensaje original-
De: Todd Cary [mailto:[EMAIL PROTECTED]
Enviado el: domingo, 31 de agosto de 2003 21:18
Para: [EMAIL PROTECTED]
Asunto: [PHP] Input area allowing text formatting
I would like t
Well, in the process of pulling out some code into a sample page to
send to the list I found the problem. It was yesterday when someone who
was testing it told me about the problem, but the problem must have
been going on for a week, because a week ago I added code to a global
include script th
On Tuesday 21 January 2003 23:03, Jason Wong wrote:
> Undo any configuration changes made recently, downgrade any recent upgrades
> etc. To paraphrase Newtown's First Law of Motion:
Sorry, "Newton's First Law of Motion" :)
> "Any working system tends to remain in that state unless external force
On Tuesday 21 January 2003 22:33, Dan Delaney wrote:
> Hi every body. I have a form that was originally working just fine. It
> had a series of input checkboxes with the same name ("interests[]").
> These values then ended up in an array ($_POST['interests']), which I
> then imploded into a comma s
"Rick Emery" <[EMAIL PROTECTED]> wrote in message
024801c2c15b$1a770e70$0500a8c0@honeybee">news:024801c2c15b$1a770e70$0500a8c0@honeybee...
> show us code
Learn how to quote. :)
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
show us code
- Original Message -
From: "Dan Delaney" <[EMAIL PROTECTED]>
To: <>
Sent: Tuesday, January 21, 2003 8:33 AM
Subject: [PHP] Input field array ends up as "Array" string
Hi every body. I have a form that was originally working just fine. It
had a series of input checkboxes wit
>
>
>onclick = "document.all['tree'].status[].value='expand';
No matter what you do, JavaScript will *NEVER* accept the [ or ] character
as part of a field's NAME.
Those are RESERVED keys in JavaScript.
You'll have to refer to the INPUT by NUMBER, rather htan name.
onClick = "document.all.tre
On Wednesday 13 March 2002 21:07, Rick Emery wrote:
> Nope, that's not the problem. the $_POST[] is NOT inside single-quotes.
> The problem is he used commas before and after the $_POST[].
You can use commas to separate expressions when using echo. So that's not the
problem. AFAICS the code *i
On Wednesday 13 March 2002 21:02, Edward van Bilderbeek - Bean IT wrote:
> the single quotes you use for your echo indicate that the variable in your
> echoed string won't be parsed double quotes indicate that it will be
> parsed...
>
> e.g.
>
> $test = 1
>
> echo '$test' // prints: $test
>
t: Re: [PHP] input
the single quotes you use for your echo indicate that the variable in your
echoed string won't be parsed double quotes indicate that it will be
parsed...
e.g.
$test = 1
echo '$test' // prints: $test
echo "$test" // prints: 1
Greets,
Edward
&g
On Wednesday 13 March 2002 20:54, John Gurley wrote:
> hello,
> Someone was kind enough to give me this code for sending a value from
> one page to another, but it doesn't work. I wonder if anyone can see
> anything wrong:
>
> echo '
>
> ';
> ?>
>
> I want to pass $inp to another pagee.
Ple
the single quotes you use for your echo indicate that the variable in your
echoed string won't be parsed double quotes indicate that it will be
parsed...
e.g.
$test = 1
echo '$test' // prints: $test
echo "$test" // prints: 1
Greets,
Edward
>
> > hello,
> > Someone was kind enough
';
?>
-Original Message-
From: John Gurley [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 13, 2002 6:55 AM
To: [EMAIL PROTECTED]
Subject: [PHP] input
hello,
Someone was kind enough to give me this code for sending a value from
one page to another, but it doesn't work. I wonder
Dear Philip,
Thank you very much,
I have lost long time proving different alternatives that it's better
not to implement. I prefer a safe code.
Thanks again!.
Cheers
Silvia Mahiques
"Philip Olson" <[EMAIL PROTECTED]> escribió en el mensaje
Pine.BSF.4.10.10
It is possible to utilize a VALUE attribute with a FILE type input
field. Even the specs at Blooberry list "value" as an attribute of the
input type=file field. I double-checked at w3c.org to make sure, though,
and found the information repeated there. I even checked my O'Reilly book
on XHT
This is not possible. Default values cannot be set with type=file as if it
were it would be quite a security risk.A little more information on
the capability of this html form element:
http://www.blooberry.com/indexdot/html/tagpages/i/inputfile.htm
And a related RFC :
http://www.faqs.or
You need quotes around multi-word values in HTML.
--
Visit the Zend Store at http://www.zend.com/store/
Wanna help me out? Like Music? Buy a CD: http://l-i-e.com/artists.htm
Volunteer a little time: http://chatmusic.com/volunteer.htm
- Original Message -
From: "kaab kaoutar" <[EMAIL
On Mon, 5 Mar 2001, kaab kaoutar wrote:
> I'm using a variable!
> >
Quote the value:
\">
Greets,
Batonik
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators,
On Monday 05 March 2001 17:29, you wrote:
> I'm using a variable!
> >
Well, you *still* need to have quotes around it:
> >Make sure you have quotes around the value.
> >
> >
--
Christian Reiniger
LGDC Webmaster (http://sunsite.dk/lgdc/)
...to paraphrase Churchill, while representative demo
I'm using a variable!
>
>From: "Brad S. Jackson" <[EMAIL PROTECTED]>
>To: "kaab kaoutar" <[EMAIL PROTECTED]>
>Subject: Re: [PHP] input textfield value cat!
>Date: Mon, 5 Mar 2001 10:08:21 -0600
>
>
>
>Make sure you have quot
alm
Canvas, 3D, Graphics,
ColdFusion, PHP, and mySQL
http://www.wizaerd.com
=
> -Original Message-
> From: Jerry Lake [mailto:[EMAIL PROTECTED]]
> Sent: Friday, February 16, 2001 5:16 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [PHP] input type=fil
, 2001 4:16 PM
To: [EMAIL PROTECTED]
Subject: RE: [PHP] input type=file
so then maybe, if I understand it correctly
(which may or may not be true) I could read
the contents or a directory and populate a
dropdown list...?
Jerry Lake- [EMAIL PROTECTED]
Web Designer
Europa Communications
-Original Message-
From: Joe Sheble (Wizaerd) [mailto:[EMAIL PROTECTED]]
Sent: Friday, February 16, 2001 4:16 PM
To: [EMAIL PROTECTED]
Subject: RE: [PHP] input type=file
to put it simply, you can't...
but you could put an input type of text with a link or a button next to it
man
to put it simply, you can't...
but you could put an input type of text with a link or a button next to it
manually, and then on the onClick of either this button or link open a
secondary window running a PHP script that reads a particular directory
structure with full navigation support. Then wh
> When a form is submitted from an image (e.g. ) this
> will be passed in the URL as paging.x=SOME_NUMBER. If I try and
> access this variable as ${paging.x} in the subsequent PHP script
> I get nothing. How can I access this variable? all I want to do
> is test for it's existance ? Simple as
This is how I usually do it:
Then you have an array of values in $f
then just do :
while(list($key,$val) = each($f))
{
$$key = strip_tags($val);
}
Which will then create a variable $firstname and put a strip_tags of $val into
it (leaving your original $f array intact for future use)
--Joe
65 matches
Mail list logo