|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: php-general-digest-help
lists.php.netDate: Sun Oct 14 2001 - 00:10:39 CDT
php-general Digest 14 Oct 2001 05:10:39 -0000 Issue 933
Topics (messages 70990 through 71016):
curl php help!!!!!!
70990 by: jscart
Re: how to convert a string into a date format ?????
70991 by: ~~~i LeoNid ~~
Re: protecting your php code from other peeping toms?
70992 by: ~~~i LeoNid ~~
70993 by: ~~~i LeoNid ~~
70997 by: Matthew Loff
Re: testing an email address
70994 by: ~~~i LeoNid ~~
php and html frames
70995 by: Peter
70998 by: Julio Nobrega
71006 by: Simon Su
71008 by: Mike Patton
Sessions issue
70996 by: Maxim Vysotskiy
71014 by: Peter
Re: php and html frames (continued)
70999 by: Julio Nobrega
PNG
71000 by: Fernando Avila
71001 by: Matthew Loff
nextpage.php?var1=one&var2=First Last&var3=3 ??
71002 by: Simon Su
71003 by: Simon Su
71004 by: Simon Su
71005 by: Kurt Lieber
71007 by: Simon Su
Sessions...
71009 by: Arvydas V.
INPUT type="file" name= value= problem
71010 by: Subvertise.org
71011 by: Mike Patton
71012 by: Subvertise.org
Wichtig !!!
71013 by: logomeister.gmx.de
how to set font colors
71015 by: Regis Philbin
71016 by: Gaylen Fraley
Administrivia:
To subscribe to the digest, e-mail:
php-general-digest-subscribelists.php.net
To unsubscribe from the digest, e-mail:
php-general-digest-unsubscribelists.php.net
To post to the list, e-mail:
php-generallists.php.net
----------------------------------------------------------------------
attached mail follows:
I'm seting up an ecommerce page and have the following problem
After I post my data to the processor for verification they return the
following
string : "YAUTH bla bla ","bla bla bla ()",bla bla ()"
When I recieve this string it is being cut-off at the first " here's my code
exec("$curl -d \"$data\" $url", $return_string);
the return_string array is empty. How the hell can I remove or replace the
quotes
before it enters $return_string?
attached mail follows:
On Wed, 10 Oct 2001 09:01:26 +0000 (GMT) impersonator of
philipcornado.com (Philip Olson) planted &I saw in php.general:
>> Keep in mind, however, that a unix_timestamp has a range starting at Jan 1,
>> 1970. If you are working only with current dates, then this will not be a
>> problem, but if you are working with historical dates, such as a persons
>> age, then do not go with the unix_timestamp.
>
>They end up being negative. For example :
>
> $date_str = '1943-10-25';
> print strtotime($date_str); // -826416000
>
>Will work with date() too.
Good to know that, if it is indeed true. But erroneous date format data
gives -1 by strtotime() and that produces error on date() function, which
contradicts your finding, unless -1 is a specialy treated data. But
according to your logic it should represent something like 31 Dec 1969
23-59-59 :) (I'll double check later, when i come to it)
But yes, this is definitely something to
>consider when dealing with unix timestamps. The limitations afaik are as
>follows :
>
> -2147483647 // December 13, 1901
> 2147483647 // January 19, 2038
>
> http://pasadena.wr.usgs.gov/office/given/timekeeping.html
>
>I'm not much of an authority but point is, negatives work too :)
>
>regards,
>Philip Olson
>
>
>> At 06:50 AM 10/10/2001 +0000, Philip Olson wrote:
>> >Also consider the strtotime() function, it'll give you the unix timestamp
>> >of this string. Example :
>> >
>> > $date_str = '2001-10-25';
>> >
>> > print strtotime($date_str); // 1003968000
>> >
>> >Using it with date() can be like :
>> >
>> > print date('F d, Y',strtotime($date_str)); // October 25, 2001
>> >
See above for $date_str = -1 (Why only they didn't make errors -> false !=
-1
attached mail follows:
On Thu, 11 Oct 2001 10:53:00 -0700 impersonator of
andrew.chasevalleypres.org (Andrew Chase) planted &I saw in php.general:
>Why not formally license your scripts to your clients? Yes, they'll still
>have access to the source code, and yes, theoretically, someone could still
>copy it regardless of their license agreement, but if they sign or accept a
>clickwrap license agreement you would have legal recourse if you found out
>about it. You could put together as restrictive a license as you want.
>
>You could, theoretically, include a license restriction that forbids a
>client from touching so much as a blank space in your script... then do an
>MD5 checksum on the script file when you install it, and run a cron job to
>recheck the checksum every night; if it doesn't match the original,
>somebody's monkeyed with it. The script e-mails you, you make a nasty phone
>call to your client. Or I guess you could just check the file modification
>time for that matter. Harder to protect from copying, though, and I'm sure
>any solutions would be just as klunky.
>
>But it's important to remember that with proper licensing, releasing source
>code doesn't mean you don't own the copyright or 'Intellectual Property' any
>more, no matter what Microsoft would like you to believe.
Ideally, right. Law should protect you. From this point, I agree with your
above "licensing" part and expressed simular believes myself earlier.
>Well, if keeping your code secure isn't worth the cost of the Zend optimizer
>but you're determined to keep it hidden, then maybe PHP isn't the right tool
You are not restricted to zend, if you are not able to pay for it. And it
doesn't mean, you have to forget PHP, or live "open for all":)
>to use. You could write CGI scripts in C, which would live on the server as
>compiled executables. Harder to learn, yes (It's definitely slow going for
>me compared to PHP), but no source code.
>
Thats is one of the solution to your previous part. See my another post in
the thread. You can encript your main code in _PHP_ and work with it from
compiled module. Although I actually made only the have stuff of it yet:)
>-Andy
>
And of course, all we discuss here are VERY relative in nowerdays of
snooping equipment, but also technically interestin<g>
attached mail follows:
On Thu, 11 Oct 2001 11:42:28 +0200 impersonator of mortenhotpost.dk
(Morten Liebach) planted &I saw in php.general:
>On 10, Oct, 2001 at 08:25:24PM -0400, newsgrpOneGeek.com wrote:
>
>...
>
>> If I have php code sitting in someone's home directory(btw, I am using
>> linux), they can ftp to get it. Okay, So block FTP, telnet/ssh for that
>> user.
>
>If there's any local users having a shell on the machine you basically
>can't protect your work. There are lots of localhost exploits in any
>system.
This sounds like too common a statement. Are you saying there is no way to
filter/limit access for users (not super), if there is a shell access?
Ok, lets restrict to server super (stuff) only, whithout shell access for
users. Do you entirely rely on such system?:)
In all cases it is responsibility of server _stuff_ (not its client) to
have a secure system, whithout making your life too hard.
>
>It should be a totally dedicated server.
>
This is phantasy for most. And if you have one (with all the knowledge,
needed to maintain it) will it 100% ensure you?:) Whith modern ways of
snooping, inserting Trojans .. Or just pull the plug out and don't
re-connect to InterNet ever:) That won't save you also, as internet 'll
find a way to come to you wirelessly (like F18s into God forgotten AfGany
deserts:)
...
>
>Write CGI script in a compiled language, C, C++ or INTERCAL, and run it
>from your PHP scripts.
>
Thats a possibility, if to consider it in conjunction with PHP. But better
to do it other way around, i think: run CGI compiled (small) handler stuff
first, and call your (effectively) compressed PHP from it, to take
advantage of PHP speed and functionality.
>> Hopefully, all the questinos I brought up and scenerios that were described
>> will pop some ideas in coder's heads. How do you guys protect code -- if
>> you do. What are other options that I missed.
>
>I think it's a strange thing to do, I think it's bound to end up being
>either security through obscurity or a *lot* of extra work for you, none
>of which is really smart IMHO.
>
I disagree with you. _You_ will still understand youself:) And extra work
will not be a waste of time, if you design it as a common (standardised)
tool, easily apllied to your code, beside, that you learn a lot usefull on
the way.
>A totally dedicated server where you have complete control is the only
>thing ... and secure code, *always*.
>
See my not above. "Dedication" requieres you to know all and everything by
yourself, which is impossible, or you still be relied on others:) And
better to do it openly. (That is why, btw, OPEN source code tend to be
less buggy, although I am not against technical protection of code, and
even am making a system of my own Its all the matter of judgement, where
to use what:)
>> Thank you,
>
>I hope you found this useful. :-)
>
Kinda of:)
> Morten
-- i leo n id
attached mail follows:
Are there any open source efforts to clone the Zend PHP compiler, so that PHP scripts can be distributed in binary form?
There is already the Win32 PHP compiler intended for PHP+GTK scripts...
> >Write CGI script in a compiled language, C, C++ or INTERCAL, and run it >from your PHP scripts. > Thats a possibility, if to consider it in conjunction with PHP. But better to do it other way around, i think: run CGI compiled (small) handler stuff first, and call your (effectively) compressed PHP from it, to take advantage of PHP speed and functionality.
attached mail follows:
On Sat, 13 Oct 2001 09:29:56 -0400 impersonator of pylemsympatico.ca
(Pierre-Yves) planted &I saw in php.general:
>domain names (this is mainly for french and spannish only): >ÀÁÂÃÄÅÇÈÉÊËÌÍÎÏÒÓÔÕÖÙÚÛÜÝàáâãäåçèéêëìíîïðòóôõöùúûüýÿ > >Cheers.. >Pierre-Yves Lemaire > Did i become <S>Punish <S>uddenly?:) This your above string perfectly shows up as cyrilic in my encoding. And i am using cyrilic domain name checking for a while already. $domain = "([_0-9a-zÿâåðòûóèîïøùýúüþ¸àñäôã÷éêëìíáæöõç][_0-9a-zÿâåðòûóèîïøùýúüþ¸àñäôã÷éêëìíáæöõç-]+?\.)+[a-z]{2,3}";
-- i leon i d
attached mail follows:
Hi,
I am new to PHP and I have been writing some PHP scripts for projects lately.
I have noticed that many PHP sites do not use frames. I have experimented with PHP and HTML frames and they seem to work fine in combination. However, a lot of websites that I have seen seem to use the modularity feature of PHP (combing different php files to look like one page) and not use frames.
I was wondering is there any thing wrong with using frames on PHP pages or is frames just a passing fad that's fading out?
Or maybe I am just not visiting enought PHP sites?
Thanks.
Peter
attached mail follows:
Personally I believe that frames are no good. It's kind of a 'design school' where simplicity and commom standards heavily rule my work. A lot of usability inserted. On this context, just resuming my theories, I believe frames confuses users.
Anyway, linking the subject with PHP, maybe, just MAYBE, programmers naturally follow a direction of simplicity on their code. OOP and stuff. And generally applying these aspects of coding style to other parts of the work.
It's a commom sense among strong designers that frames are bad. More on this subject can be found here:
--Julio Nobrega.
Um dia eu chego lá: http://sourceforge.net/projects/toca
"Peter" <php_guy
attached mail follows:
Peter,
If I am not mistaken, it has something to do with session id tracking. I am still trying to get around the problem with the site that I am working on that has frames.
The thing is that, there is no way (that I know of) to update the expired session id on the already loaded page in the next frame!!!!
If you know a way around this, PLEASE let me know!!! Then, maybe at that time I can tell you a PHP site that uses frame!!!
Thank you
Simon
Peter wrote:
> Hi, > > I am new to PHP and I have been writing some PHP scripts for projects > lately. > > I have noticed that many PHP sites do not use frames. I have experimented > with PHP and HTML frames and they seem to work fine in combination. > However, a lot of websites that I have seen seem to use the modularity > feature of PHP (combing different php files to look like one page) and > not use frames. > > I was wondering is there any thing wrong with using frames on PHP pages or > is frames just a passing fad that's fading out? > > Or maybe I am just not visiting enought PHP sites? > > Thanks. > > Peter
attached mail follows:
You could always have some javascript in one frame which will cause the other frame to reload with a session id... it's a kluge, and if the user has javascript disabled you'll be outta luck.
On Sat, 13 Oct 2001, Simon Su wrote:
> Date: Sat, 13 Oct 2001 17:53:56 -0500
> From: Simon Su <ssutietronix.com>
> To: php-generallists.php.net
> Subject: [PHP] Re: php and html frames
>
> Peter,
>
> If I am not mistaken, it has something to do with session id tracking. I am
> still trying to get around the problem with the site that I am working on that
> has frames.
>
> The thing is that, there is no way (that I know of) to update the expired
> session id on the already loaded page in the next frame!!!!
>
> If you know a way around this, PLEASE let me know!!! Then, maybe at that
> time I can tell you a PHP site that uses frame!!!
>
> Thank you
>
> Simon
>
>
>
> Peter wrote:
>
> > Hi,
> >
> > I am new to PHP and I have been writing some PHP scripts for projects
> > lately.
> >
> > I have noticed that many PHP sites do not use frames. I have experimented
> > with PHP and HTML frames and they seem to work fine in combination.
> > However, a lot of websites that I have seen seem to use the modularity
> > feature of PHP (combing different php files to look like one page) and
> > not use frames.
> >
> > I was wondering is there any thing wrong with using frames on PHP pages or
> > is frames just a passing fad that's fading out?
> >
> > Or maybe I am just not visiting enought PHP sites?
> >
> > Thanks.
> >
> > Peter
>
>
>
-- ------------------------------------------------------------------------ James "Mike" Patton \ Professional web applications developer mpatton
attached mail follows:
Hi folks Is there any way to find out if PHP session with particular ID is not registered in system, or get a list of sessions registered ?
Thanks in advance
attached mail follows:
I thought that I could always see the session ID's registered under the /tmp directory of my Red Hat Linux 6.2.
On Sat, 13 Oct 2001, Maxim Vysotskiy wrote:
> Hi folks > Is there any way to find out if PHP session with particular ID is not > registered in system, or get a list of sessions registered ? > > Thanks in advance > > > >
attached mail follows:
Sorry, I pressed some wrong buttons when pasting this link:
http://www.useit.com/alertbox/9612.html
Anyway, programmers try to KISS (keep it simple, stupid). The non adoption of frames is part of it.
--Julio Nobrega.
Um dia eu chego lá: http://sourceforge.net/projects/toca
"Julio Nobrega" <inerteARROBAhotmail.com
attached mail follows:
Hello php-general,
I'm trying to use Image commands... like imagecreate. I know i have to activate the png option. But i did "config --with-png --with apxs", make, make install but nothing seems to happen... I did a phpconfig.php3 and the option --with-png isn't shown there. What can i do? iuse redhat 7.1
-- Best regards, Fernando mailto:fano
attached mail follows:
Using the Image...() functions with PNG files not only requires --with-png, but also the GD library (compiled with PNG support)...
See the PHP Manual for details about configuring with GD, and to download GD, go to: http://www.boutell.com/gd/
-----Original Message-----
From: Fernando Avila [mailto:fanointer-k.com.ar]
Sent: Saturday, October 13, 2001 5:57 PM
To: php-generallists.php.net
Subject: [PHP] PNG
Hello php-general,
I'm trying to use Image commands... like imagecreate. I know i have to activate the png option. But i did "config --with-png --with apxs", make, make install but nothing seems to happen... I did a phpconfig.php3 and the option --with-png isn't shown there. What can i do? iuse redhat 7.1
-- Best regards, Fernando mailto:fano-- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: php-general-unsubscribe
attached mail follows:
Greetings, How do you pass a variable that contain a space to the next page?
Any suggestions is much appreciated.
Thank you
Simon
attached mail follows:
Greetings, How do you pass a variable that contain a space to the next page?
Any suggestions is much appreciated.
Thank you
Simon
attached mail follows:
Greetings, How do you pass a variable that contain a space to the next page?
Any suggestions is much appreciated.
Thank you
Simon
attached mail follows:
http://www.php.net/manual/en/function.urlencode.php
> How do you pass a variable that contain a space to the next page?
attached mail follows:
Kurt,
Thank you so much.... sorry about the multiple posting -- technical difficulties -- ;)
Simon Su
Kurt Lieber wrote:
> http://www.php.net/manual/en/function.urlencode.php > > > How do you pass a variable that contain a space to the next page?
attached mail follows:
Hello, i'd like to ask of all of you - has anybody had the same problem like me... My problem - keeping session variables when i open another window from "parent" window (by pressing shift and opening child "window"), or opening the same window by pressing CTRL+N My problem is - how to know, that these variables must be unset when it happens ? Thanks (from Lithuania :-))
attached mail follows:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Have a form which is used to submit image files. If there are errors user is taken back to the form (with all the values they entered), given error message and ask to correct/resubmit.
All well apart from one thing. Cant get filename of files included from form type=file 'Browse' input field. Thought below would work but file always empty. Any ideas?
<INPUT type="file" name="thumbnail" value="<?=$thumbnail_name?>" size="30">
Regards, Bill Posters (don't prosecute me)
-----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBO8jkCP4H8PnbFwvHEQJaagCfWVXK/a3sKn17h/uAqoNDfzNelNsAn0fE 17mut2frH3RsdFX/IBcU4uJY =JBGL -----END PGP SIGNATURE-----
attached mail follows:
For security reasons, you can not set the filename in a file box with HTML remotely. This includes keeping state such as what you are trying to do. It is a security precaution. Here is what the PERLDOC for CGI.pm says about this:
For security reasons, browsers don't pay any attention to this field, and so the starting value will always be blank. Worse, the field loses its "sticky" behavior and forgets its previous contents. The starting value field is called for in the HTML specification, however, and possibly some browser will eventually provide support for it.
> All well apart from one thing. Cant get filename of files included from > form type=file 'Browse' input field. Thought below would work but file > always empty. Any ideas?
------------------------------------------------------------------------
James "Mike" Patton \ Professional web applications developer
mpattonacuitymedia.com \ specializing in PERL, MySQL, PHP and JAVA
------------------------------------------------------------------------
attached mail follows:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Po! Not even a clever work round. Guess I could remember the temp file name and copy it to relevant filename when the user fixes errors, how long is temp file likely to be around for? May confuse user a bit though. Not having the filename. Guess I could display a message saying file has been saved in the bit that gives errors.
At 03:38 A 14/10/01, you wrote:
>For security reasons, you can not set the filename in a file box with
>HTML remotely. This includes keeping state such as what you are trying to
>do. It is a security precaution. Here is what the PERLDOC for CGI.pm says
>about this:
>
> For security reasons, browsers don't pay any attention
> to this field, and so the starting value will always
> be blank. Worse, the field loses its "sticky"
> behavior and forgets its previous contents. The
> starting value field is called for in the HTML
> specification, however, and possibly some browser will
> eventually provide support for it.
>
> > All well apart from one thing. Cant get filename of files included from
> > form type=file 'Browse' input field. Thought below would work but file
> > always empty. Any ideas?
>
>------------------------------------------------------------------------
>James "Mike" Patton \ Professional web applications developer
>mpattonacuitymedia.com \ specializing in PERL, MySQL, PHP and JAVA
>------------------------------------------------------------------------
>
>
>--
>PHP General Mailing List (http://www.php.net/)
>To unsubscribe, e-mail: php-general-unsubscribelists.php.net
>For additional commands, e-mail: php-general-helplists.php.net
>To contact the list administrators, e-mail: php-list-adminlists.php.net
-----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBO8juUf4H8PnbFwvHEQK8ywCfcEfpRxBgHCMVGnkNhHwSK1Xi5JYAnjR+ NJe44WbG+JN7lw7iMrg14goX =V+3a -----END PGP SIGNATURE-----
attached mail follows:
Achtung !!!! Wichtiger Hinweis !!!!! Dies ist kein Spam.... weitere Infos lesen Sie bitte am Ende der Mail
Jetzt Endlich da und einmalig in Deutschland Logos, Klingeltöne, Mailboxsprüche und Funcalls ab 1,-- DM für dein Handy !!!!
Unmöglich ???? Nein.... es geht doch..... Wo ???? Na schau doch mal rein und probier es aus ... ganz einfach und Easy.....
Klick hier zum testen: Logos Klingeltöne Mailboxsprüche Funcall ab 1,-- DM
Jede Woche neu und immer aktuell : Top 20 Charts Klingeltöne - Top 10 Logocharts - Most wanted Mailboxsprüche
oder auf Viva Videotext Seite 371
Und damit noch nicht genug :
Endlich da und absolut Tendig : Der coolste Deutschlandtreff aller Zeiten ganz ohne 0190 Rufnummer
- Flirtspaß für Sie und Ihn - Jetzt mit Kontaktanzeigenmarkt - absolut coole Conferenzräume - ganz private Separees für ganz diskrete Gespräche
Wähle jetzt gleich - 01805 706666*
*( 0,24 DM / Min,LM) Ganz egal wie lange Du anrufst
Achtung !!!! Wichtiger Hinweis !!!!! Dies ist keine Spam....
Sie erhalten diese Mail weil Sie , oder andere, Ihre Emailadresse in unsere Datenbank eingetragen haben. Sollten Sie diese Info nicht bestellt haben so bitten wir Sie sich einfach wieder auszutragen .... Wie ??? Einfach hier klicken : Jetzt hier klicken
attached mail follows:
I'm trying to modify some font collors. The author has indicated that I just need to insert standard markup tags. Below, is the unmodified code.
echo "
<dl><dt><b>$user[0]</b> $mailadd $urladd ($user[3 ]) <dt><dd>$user[4]</dd>\n</dl>";
the normal font tags like the example below return an error. <font color="#FFFFFF">$user[0]</font>
Is this done differently in php?
attached mail follows:
You have to escape your embedded quotes. Try this:
<font color=\"#FFFFFF\">$user[0]</font>
-- Gaylen gfraley5"Regis Philbin" <regis
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]