| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
Comments:
<0> all the fun new stuff goes into 5 :)
<1> perhaps I should paraphrase
<2> im just using php includes and the mail() function ;)
<3> Shwouchk, all you really are saving on their computer is a hash the info stays on the server in the session storage directory
<1> If i store say a username in a session cookie, and the user then visits some 'hostile' site, can the username be picked from the session cookie, and is so, what can I do to prevent it?
<1> nife: but cant someone else 'stael' the cookie and p*** it on as their's?
<0> why not just md5 it then
<0> atleast then it isnt cleartext
<4> whats stopping you lig?
<5> most of my programming is expected to be on shared hosting... not dedicated servers
<1> s/stael/steal
<4> so get on a shared host that provides php5
<6> i am having some trouble with uploading in php
<3> none of the info is in the cookie if you are storing stuff in the session. Yes people from the same ip can use the same cookie to look like the same session. That still doesn't give them the data, just the same access that session affords
<1> eric: what would that acheive?
<6> the uploader works most of the time but with 1mb files it tends to fail alot
<2> what configure option lets me choose where to install php?
<6> just stops half way through
<3> prefix
<2> k
<5> I know... my boss insists though that it be PHP4... friggin' irritating
<1> nife: I understand, but I wanted to save the username so that a person wouldnt have to relogin
<0> Shwouchk: well if you store an md5 of the username, then you can just say md5 what the user says their username is and they will match without actually storing the real value
<3> lig, show him this. http://www.sebastian-bergmann.de/blog/archives/504-PHP-5.1-Performance.html
<1> eric: read my last message to nife
<3> eric, he's asking about session hijacking not puting the p*** in the cookie
<1> I remember gmail had some kind of a similar problem, didnt they?
<1> nife: only someone from the same IP?
<7> hello, my friends
<3> Shwouchk, oops yeah forgot to put that. just save the calling ip and then you should be very safe, or at least as save as you can be
<7> why everyone uses php instead of java ?
<8> chandrasekaran: not _everyone_ is using PHP ...
<7> php doesn't have good object support
<8> actually it does have quite good object support
<7> we use java in india
<8> not for webscripting.
<3> java has a hellish development cycle <$10,000 projects don't need java's utils
<7> i see, my friends
<3> and actually I think the shift recently has been to cleaner languages like ruby
<7> ruby on rails ?
<3> yeah, recently it is starting to take off outside of the early adopters and into business. But this is ##php
<1> nife: I see. it does seen reasonable. are there any additional safety methods? I think I read somewhere about adding an extra random key to the session id (especially if its a POST session...) could that work?
<7> nife i see, my friend
<9> what is a good framework for PHP?
<3> make sure their user-agent stays the same. thats about all that you can do
<7> cymfony ?
<3> Buchannon, the big two are cakephp and my fav now symfony
<10> Buchannon .oO( a framework for getting things out of the icebox? )
<7> nife what do you think is most valuable that symfony provides ?
<9> is it pretty outdated to just write PHP by hand rather than use a framework these days?
<3> I like the way the integrated the database access layer better then cake's. Though I wish they would stay away from yml
<7> what's yml ?
<3> Buchannon, depends on what you are writing one or two pages are easy to do free hand, a whole app I love the frameworks
<3> chandrasekaran, thats the way they store some of their config stuff until it gets cached for the first time
<7> i see, my friend
<3> just seems weird to have another format to worry about though its no slower since they parse it and then store it in cached php files.
<7> yes people used to complicate things
<11> wow my pc is smoking fast compared to what it use to be hehe 1.4 gig of ram lol upgraded from a 256 meg
<12> thats some difference :P
<13> what kind of processor?
<9> ok, I've always heard that when connecting to a database, not to write the username and p***word junk in the .php file... how do I do it using a file ?
<11> 1.3 giga hertz pentium
<11> on my lap top
<11> lol fine for me
<13> ah, not bad
<11> i wish i had a amd just got a good deal on this
<13> no amd
<11> 125 dollars for a nice lappie
<13> go pent
<11> why pentium
<13> the new conroes are coming out
<11> man its freakin fast
<13> they use not even half the power the current cpus use
<11> ***y
<13> and they are much much faster
<11> yea
<11> what pentiums are?
<13> with 4mb cache
<11> i heard amd are
<13> the new amd2's arnt going to be as good as the new conroes
<13> the conroes are dual core too
<14> for some reason i get a 500 Internal Server Error when i throw an additional include in the .htaccess file
<14> no sure how though, since it seems legit
<15> twodeko: check your apache error_log
<11> lol 1.3 gig of ram, and 1.3 gig processor
<16> And then go to #apache
<16> 1.3 gig of from?
<16> of ram*
<15> that is an odd gig count
<16> a 307mb module? :)
<1> nife: thanks!
<11> yup ram
<11> but its running great
<11> I upgraded from 256 bought a gig chip, and have my 256 in here too
<11> its capable of holding 2.480 gig of ram
<11> laptop :)
<1> nife: btw, if were talking about frameworks, what about zend's?
<16> 1.28 gig then :P
<14> zircu, /home/twodeko/twodeko.com/.htaccess: php_value takes two arguments, PHP Value Modifier
<16> 1.25*
<14> wha!?
<16> twodeko: Locate php_value in your .htaccess..
<11> dangermouse: before when i was programming, and using photoshop apps would runn poorly now its flying hehe
<11> click click there it is
<15> twodeko: i know that, but a 500 means check your error_log to see what is wrong.. my bet is that you need to go to #apache and ask why you arn't allowed to add php_value in your htaccess files
<17> hi
<14> Dangermouse, php_value include_path='.:/usr/local/php5/lib/php:/home/twodeko/include'
<16> errrrrr
<14> zircu, i was just letting you know what the error was
<14> Dangermouse, doesnt taht seem fine?
<16> that would probably be: php_value include_path '.:/usr/local/php5/lib/php:/home/twodeko/include', if anything
<15> twodeko: that would help if you showed that it was an error instead of stating what the rule for php_value is
<14> Dangermouse, bingo
<14> thanks Dangermouse and zircu
<18> hi! I need a software that would help in organizing my stuff (programs, essays, photos, and more) i made in my short life yet and publish what i think is publicable on the web. it would be nice to tag the topics and browse nicely through them. configuration should be data-independent, like an xml file in every directory.... someone knows such software?
<18> i would like to have 2 interfaces: one with AJAX for modern browsers and one old for lynx-like stuff and spiders ;)
<15> google might
<18> what keyword
<19> so i was just thinking, is this valid?: header("Location: javascript:history.go(-1)");
<20> I uploaded a text file, and when its used in my system, comes up all garbaled.
<20> http://www.myresourcespace.com/myspace.php/layouts
<20> see the first layout on the list.
<20> any ideas?
<21> hey, i'm trying to convert BMP to JPG using built-in GD functions. but there doesn't seem to be imagecreatefrombmp() ?
<22> if i'm doing a query and pulling it from a column that h*** the value null what does the return have?
<1> daum: why not try?
<14> hmmm
<14> my include path isnt even being recognized
<14> require_once fails and the error says the path is (include_path='.:/usr/local/php5/lib/php')
<14> even though i explicitly stated another folder in .htaccess
<5> Hmm - bookpool is having a 50% off sale on Sam's and a couple other publishers. Pollita's new book is one of the books on sale
<23> question what happens when someones goes to example.com/test.php while php crashed
<23> reads the source
<23> ???
<9> how can I loop through all the form names using php? Like lets say my form is named form1 - foreach {$_POST['form1'] as $formtitle) { echo $formtitle; } doesn't work...
<23> as $key=>$value) ?
<23> eh sorry
<9> ?
<23> {$_POST as $formelt) { echo $formelt; }
<14> does anyone know why my .htaccess might not be reading the path correctly
<14> i added something to include_path and it won't load it
<9> forque: hm.. thanks
<9> forque: that gives me the values in the forms, is there any way to get the names of the form elements?
<23> foreach($_POST as $name=>$formelt) { echo $name; echo $formelt; }
<15> Pollita: give me a book and sign it, i'll share the profits i get from ebay with you
<9> forque: thanks a ton, I dont understand how the $name=>$formelt worked, but thanks!
<15> Buchannon: php.net/foreach
<9> zircu: thanks I'll look into it
<23> manual is cool
<24> is there a way to find out what function the current function was called by?
Return to
#php
or
Go to some related
logs:
6500g drivers
travelmate 8200 xorg.conf
fedora ssh_known_hosts
javascript before load example
sbnc irssi
ubuntu vn800
mplayer skin
yukon marvell netboot grub
#perl
knotify xubuntu
|
|