| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21
Comments:
<0> gabrielone: n/p, just be consistant, it makes things less weird
<1> colder, you want to put an argument on that statement? :-)
<2> ShortWave: Learned those lessons during my locksmith days.
<3> GalaMahina: try <?php not <?
<4> Jymmm: I bet
<5> Mithrandir_, if an hacker cracks more than one p***word, he will surely notice the similarity
<6> Jymmm: Er, not quite. Remember, there's a difference between what he 'makes' and what he 'discovers'. Unless man 'discovers' a quick way to factor numbers (which is by no means a guarantee) then there are some security systems that will remain secure for all time -- ***uming your key size is large enough.
<0> limepilot: we are not here to write code for you
<7> i cant do it alone probably
<2> Ahroun and you sir, would be mistaken.
<3> Ahroun: If somebody can decode it, so can everybody else with the right information.
<1> still twice as good as not doing it, colder :)
<0> limepilot: read the manual for those 2 functions
<8> ||cw: I understand
<1> but sure, when it comes to encrypting and cracking, it is not a great enhancement
<8> Later all...
<6> tempest: There's the point. With the right information.
<7> yes, so i have to fetch info from the file to the array and then?
<3> Ahroun: which means that there is no secure algorithm that can be decrypted
<6> tempest1: pick your key sizes large enough, and throw away the correct information, and some systems are mathematically secure.
<7> how do i pop from line 2 to the end?
<5> Mithrandir_, if you care enough about security to add such "things", you don't use md5 as an hashing algorithm :)
<3> Ahroun: Secure in what sense? Possibility or probability?
<1> and as long as the hacker knows the end result, anything can be brute-forced... just a matter of time
<9> tempest1, the code works as php, but the sorting algorithm doesn't work
<3> oh
<6> tempest1: Currently, we don't know that. When someone proofs the existence or nonexistance of factorability being in P, I'll let you know. ;)
<3> GalaMahina: what are you trying to do?
<10> tempest1. is there any way I can use php to 'trick' the included url into thinking its loading css files and images from the external URL. Also, would I need to run a loop to alter all relative urls to absolute urls?
<3> Ahroun: It doesn't matter what that result is, if it can be decoded it can be decoded. Period.
<9> tempest1, there's some numbers inputted in an html, and i need to sort them
<9> i use the order: 2,4,6,8,1,3,5,7
<6> tempest1: So you're saying that unless I completely obliterate my data so even I can't recover it, it's not secure?
<3> GalaMahina: you can use sort() but if you want to do it yourself i suggest looking up "bubble sort" for a good beginners sorting algorithm
<3> Ahroun: Yes, yes I am.
<7> you still with me?
<6> tempest1: Hrm. Guess we'll have to just agree to disagree on that one then. Seems our fundamental definitions are incompatible.
<3> sethuhdiah: No, you can't "trick" it. You have to replace the relative URLs with absolute ones
<2> Ahroun Again, you would be mistaken. See Rule #1
<3> Relative is this: <a href="/search"> Absolute is this: <a href="http://www.google.com/search">;
<11> limepilot: By removing the first one?
<3> Ahroun: I'll agree to that.
<12> instruction Google Adsense--> http://planet.nana.co.il/hartk2003/en.htm Download free Firefox --> http://planet.nana.co.il/hartk2003/Firefox.htm
<11> *blink*
<10> thanks tempest
<1> omg
<6> Someone really must ban that spammer. That page isn't even readable. en.htm my butt.
<1> as if I would ever download FF from any other site than mozilla's
<11> Ahroun: You're an idiot to even *go* there.
<3> I was about to say.
<13> lynx is probably safe enough to use for that.
<7> but it pops out the last line i think
<6> Stormchaser: I used lynx.
<14> most likely a page with a remote code execution exploit of sorts
<6> Stormchaser: And through a redirector that I know obscures origin.
<3> limepilot: look up unset()
<10> how can I use " inside a string. Like echo "href"" where I want to echo a href"
<15> \"
<7> it is for variables
<16> is it possible to see a more detailed error, instead of just 'permission denied', when using fopen()?
<10> thanks
<15> limepilot, unset($array[$key]) works fine
<3> Remi_Woler: not really, but check out posix_stat(), or file_exists(), is_readable() ... etc
<17> Remi_Woler: It depends in what context. For filesystem permissions, no.
<3> idk if posix_stat is the name for what i'm thinking of
<3> might be though
<3> err, just stat() does it
<16> it is for fs perms... File is 777, dir is 777, and still I can't open the file
<16> will try stat() tempest1, tnx
<18> can I put the internal pointer of an array to a specific element of the array? (so that current($foo) will not return the first element but the element I have already set)
<7> what is the procedure code to set array to contents of the file
<3> steve_, no
<3> oh, to a specific element?
<18> yes
<3> you basically have to move through it i think with the next() and previous() functions
<17> Remi_Woler: Well, you must be sure that you have scan access up the entire directory hierarchy. Moreover, its access could be blocked by open_basedir or safe_mode if either of these is enabled.
<18> that's what I'm trying to avoi
<18> that's what I'm trying to avoid
<19> Does anyone know how to make PHP use a certain php.ini file without recompiling php?
<3> steve_, i've got on other ideas for that
<3> there's probably a better way to do whatever you're doing thogh
<3> *though
<20> trim() wont remove any spaces if they're not in the end of the string right?
<18> is there a way to get the previous element of an array based on another element?
<17> ***yKen: It depends on how you're running PHP. from the command line, there is a command line option. If it's in a web server (well, Apache anyway), you can control it from the Apache config
<16> MarkR: afaik safe_mode is off, haven't checked open_basedir though. I don't really trust the info given by phpinfo(), as it returns false information on this specific host (not php's fault I guess). I do get an permission denied (errno=13) while using stat too :S
<18> tempest1: I just want the previous element of a specific element of the array
<19> MarkR: Apache is right -- do you know how to control it from the config though?
<3> steve_: index - 1
<3> ?
<17> ***yKen: There is a way you can do it in the Apache config. Look it up in the docs.
<18> tempest1: the array is ***ociative
<3> hmm
<21> steve_: Then no, not without iterating over the array.
<21> steve_: ***ociative arrays shouldn't be thought of as ordered anyway.
<17> Remi_Woler: If they aren't running a stock PHP, then we really won't be able to help you. Anyone who's running a modified PHP and/or in a weird hosting environment, should take up their problem with their sysadmin.
<16> MarkR: " you have scan access up the entire directory hierarchy" <= do you mean I need read permissions up to '/'? (In this case it really is '/')
<17> Remi_Woler: Reproduce the fault on a stock PHP distribution, on a test machine, and we might be able to diagnose it
<3> steve_ $array[$x[array_search($x = array_keys($array), "value_to_search_for")-1]]
<16> MarkR: no modified PHP engine, they are not capable of doing that :p A weird hosting environment? That's for sure
<17> Remi_Woler: Only "x" permission in Unix, on the directories. But if it's a nonstandard PHP build, or running on some weird server environment, that's their own problem
<3> pretty ugly, but i think that'll work
<9> how to access the last element in an array?
<3> end($array);
<18> tempest1: it still traverses the array. Anyway, I don't see any solution to avoid the traversal. Thanks
<3> Yea, it'll have to. np
<7> how to fill an array with file contents so that each part is one line?
<16> MarkR: it is default php build, just configured really weird. For example: phpinfo() says it is runnig as root, while posix_getpwuid(posix_getuid()) says I'm 'nobody'
<3> limepilot: we've already told you
<17> Remi_Woler: If they're running some kind of jail environment, or under SELinux or something, then take it up with your sysadmin
<10> is there any php function I can use to tell a link to refresh within its own table/div instead of opening the new page?
<3> sethuhdiah: go to php.net and look for a definition of PHP
<9> how to return the total size of the array?
<16> MarkR: Guess I'll have to write a MySQL block for it. Not nice for one static line of text, but hey. Can't really take it up with the sysadmin, as they don't support custom php coding :S
<17> Remi_Woler: phpinfo() output does not include the current username.
<7> where i didnt see it becouse you didnt say "limepilot:" probably
<3> GalaMahina: look in the manual
<9> i am looking and i don't see anything i need
<17> Remi_Woler, if you're wondering why various environment variables contain "root" for the username rather than "nobody", that is normal. Apache runs as root initially but changes to nobody to serve pages. This is a typical setting and doesn't affect these env vars.
<3> to limepilot and GalaMahina: both of you can find the answers to your problems by searching the site for the general topics
<3> GalaMahina: most tutorials on PHP arrays will tell you how to check the size
<16> MarkR: hmm, never seen that before...
<16> MarkR: but thanks for helping anyway. I'll just use a MySQL block for it for now. It's a quick&dirrty fix anyway
<17> Remi_Woler: I think that you'll find that the permissions are PROBABLY right. I expect your code is doing something wrong.
<17> You should be able to create and modify files somewhere
<16> MarkR: $fp = fopen("/home/(...)/settings/settings.dat", "w"); <== that's all the code that is giving the error
<17> Are you completely sure that you've got the entire path exactly right?
<17> It is usually better to do things relative to the document root rather than hard-coding server-specific paths
<16> MarkR: yups, definately sure, checked a hundred times or so. I can write in /tmp, but that's not really what I need
<22> http://rafb.net/paste/results/wHoKs419.html
<22> i've this error
<17> I'm not totally convinced. How about $docroot = $_SERVER['DOCUMENT_ROOT']; $f = fopen("$docroot/settings/settings.dat", "w");
<22> what can be the problem?
<17> sky_newbie: It's an installation problem with PHP.
<17> Either that, or it's crashing
<22> i've to reistall php?
<17> No, you have to install it correctly. I see that you are using CGI mode. That's fine, provided you read and follow the installation instructions properly.
<16> MarkR: still permission denied. Though it creates a really weird path now
<17> Remi_Woler: I really think we should be able to get to the bottom of this. Bear in mind that on some servers, the directory paths you see in FTP are NOT the same ones the web server sees (i.e. chroot or jail or something)
<17> I take it the "settings" directory is immediately in the document root then?
<17> You should always try to make your application work independently of what directory it's installed into
<16> MarkR: the error outputs the real path to the file that is called. That's how I know the real path
<23> howdy all
<17> Your server's filesystem is probably case sensitive. Have you checked that?
<16> MarkR: it should be, but docroot points to a wrong directory
<16> MarkR: yups, it is. As all *nix systems are. Checked that too :)
<17> No. Docroot points to the right directory.
<17> Remi_Woler: May I see the output from phpinfo() please?
<16> MarkR: sure, hold on. Lemme put it in a non-p***worded place
<24> hi
<24> what's a good way to weed out special chars ?
Return to
#php
or
Go to some related
logs:
httpd-secure fedora
can't watch mov firefox ubuntu
xgl q3demo how
gmail-notifier auto-start ubuntu
otelmerkezi,
#perl
perl why doesnt chomp work
t
#php
make-kpkg recompile stamp
|
|