| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13
Comments:
<0> puppies can admin ? :)
<0> they are cheap
<1> note: i dont actually have pictures of them yet, so they're rats and bunnies haha
<0> http://www.tootsiepup.com/puppies.php
<0> rofl
<1> haha yea
<1> gotaq, which pup was in the spotlight?
<1> (its randomly selected)
<0> miranda or so
<1> marcia lol
<2> I'm trying to have a user select a couple of MySQL records via checkbox that will be displayed on the next page. the SELECT statements on the next page are coming through correctly. but the page keeps outputting 'S' for every requested field. The code is at http://pastebin.com/621630
<3> What's a good generic encode process for cookie content? base64_encode(serialize($value)) is the most basic version. Any other recommendations on top of that?
<4> is there a way with curl to set my own headers in the outgoing request ? (and drop curl headers, like Host header)
<5> if an object contains another object... how can the "internal" object call a method or paramater from the object that contains it?
<1> parent::methodname( ... );
<5> isn't that just if the internal object extends the container?
<5> the two cl***es have no relation
<1> oh then u have to have the "internal" object have a function that calls the "external" function directly by name
<1> static function
<1> cl*** external { static function blah( ){ } } cl*** internal { function callblah( ){ external::blah( ) } }
<1> usage: callblah( [params] );
<6> ummm, is there a global used to store the remote IP address?
<5> yes, but I don't think I can use that to get the values from an instantiated external cl***... just "static" ones (cl***Name::method versus objectName->method)
<7> so if I have a database with a few rows, every row representing some object, and then I'd like to have a list of objects in PHP that I could iterate through, how would you do that?
<6> *global variable
<8> someone experienced with curl?
<9> mmmmmmmmm: change your nick, and htp://php.net/curl is enough experience
<9> look through the notes..
<8> ok
<8> i want to do ftp
<8> i checked there but didn't find too much
<9> ftp?
<8> yes
<9> http://php.net/ftp
<8> i want to get all xml messages waiting for me somewhere
<9> curl is nothing to do with ftp i think
<8> it's definitely possible
<8> with curl
<8> but maybe not the easy way
<9> yes it is
<8> maybe i can just transfer my messages over to my server and then translate them there
<9> but php might not have curl functions
<8> ftp will be easier
<8> see it immediately
<9> mmmmmmmmm: http://pear.php.net/package/Net_Curl/download
<8> thx
<8> i'll take a look
<8> that's more for http
<3> Okay taken from the manual (php.net/setcookie): "Consider explode() to set one cookie with multiple names and values. It is not recommended to use serialize() for this purpose, because it can result in security holes". What?! How do you use explode to set one cookie with multiple key value pairs in the value attribute?
<10> Narada: they mean 'implode'
<0> why is seralize a security hole?
<8> yeah
<8> don't understand it too
<11> i'm not the ultimate keeper of information, but i generally trust their judgement
<8> if you set secret things in a cookie, you don't mind security anyway
<11> i'm aware of that
<12> I started my new job this week as a junior web developer. I write object orientated php which all their code is not written in. My senior developer recommended I use his approach. Where he has products-add.php products-edit.php products-delete.php I just have products.php. Then just call the appropriate function.
<0> use what you know
<8> or use what your boss wants :p
<9> Narada: simply, when p***ing arrays into a cookie, php sends them out seerialized. When php is receiving a cookie, ti unserializes it. So a cracker could set their cookie to soem bad serialized cl*** and then php unserializes the contents into a cl*** or some function. do you see?
<8> maybe not always best option
<8> ha ok
<12> mmmmmmmmm: he's a very nice guy. Very friendly, he just said to have a look at how they do it, but just do what I am most comfortable with
<12> he just said that if ever he needs to change anything, it may cause some problems if written completely differently
<8> he's definitely rihgt
<12> I'm writing the back end of the system. We have the / directory where the files contain as little php as possible. This is because the designers have to access these too sometimes. The ./include/ directory contains the actual php code
<13> Has anyone here experienced with AJAX?
<4> Drakas: do you think if there is a way to redefine Host header with curl (actually, header Host come from with CURLOPT_URL) ?
<4> DespNekus: please just ask your question
<9> franck34: CURLOPT_HEADER
<11> DespNekus: yes, but it sounds like this is not the place to ask
<4> Drakas: seem's it doesn't work for Host header ...
<4> Drakas: perhaps a story of version of libcurl ?
<9> franck34: just found something -> http://uk2.php.net/manual/en/ref.curl.php#54150
<13> itreball: Well, I can't find any other place... #AJAX is like a funeral...
<13> What doctype to use in AJAX?
<11> this still is not the right place to ask
<0> DespNekus, doctype ? html ..
<9> http://uk2.php.net/manual/en/ref.curl.php#53445 franck34
<9> this is what you exactly needd
<11> DespNekus: go to #web you dont want to be here for thsi question
<0> yeah, ajax should be asked in #js or #javascript or #jscript
<4> Drakas: ups, it's not an array(header_name,value) but array('header_name:value')
<4> let's test
<4> thanks
<9> :]
<11> !tell DespNekus about g8
<13> itrebal ->hehehe
<4> Drakas: thanks a LOT ! a user comment as disturb me wait
<4> Drakas: no it's me.. to tired
<9> franck34: you're welome :) user comments are more useful than manual sometimes
<3> Drakas: Fascinating. Thanks for that.
<9> DespNekus: http://tinyurl.com/8klpk
<9> ajax is not very popular
<3> Drakas: Do you think they mean implode() or explode() in that description?
<14> maybe because "ajax" isn't actually a technology
<14> stupid marketing people and their stupid buzzwords
<9> Narada: implode() for storing, explode for taking
<9> ajax is just some technology taken from XMLHttpRequest :]
<11> Drakas: you shouldn't be encouraging him to ask for help in here
<13> drakas >_<
<9> itrebal: who?
<11> Drakas: lol
<4> always with Curl, it return Operation timed out with 0 out of -1 bytes received on an ip:port, but telnet return OK ...
<14> Drakas: Ajax *is* using XMLHttpRequest...that's it.
<11> Drakas: i was referring to they tinyrul, but then i saw it :)
<9> franck34: maybe curl doent parse port
<9> itrebal: ok ;)
<4> Drakas: good idea, let's check
<3> Drakas: One last thing. When I p***ed an array to setcookie it gave an error. So it doesn't serialize it. Did you mean something else when you said that.
<3> Drakas: Or do you mean url encoded?
<9> Narada: dont serialize!
<9> Narada: p*** something like implode(';',$my_array);
<3> Drakas: That's not what I'm saying. You said "when p***ing arrays into a cookie php sends them out seerialized". I can't get this to validate. setcookie() gives an error.
<9> Narada: and then (when taking the data out), do explode(';',$_COOKIE['cookie']);
<9> sorry, miswrote
<3> Ah.
<9> if you serialize and p*** ..
<9> http://php.net/setcookie : bool setcookie ( string name [, string value
<3> Drakas: Okay but how about base64_encode(serialize($value)) and also salting it with something else? Is that secure enough?
<9> Narada: still insecure
<11> base64 isn't **** for protection of anything
<9> Narada: what exactly are you trying to p***?
<9> i only use base64 to put non-alphanumeric characters to alphanumeric;]
<3> Drakas: Any arbitrary data structure. In this case a multdimensional array.
<9> Narada: i second what itrebal said
<9> Narada: maybe you should use sessions..
<9> or your custom sessions
<9> like, make your own session handler
<3> Drakas: I already have done those two things. But I need cookies as well.
<9> , store serialized data in a local file..
<15> oh dear: http://www.tubatomic.com/revolver/
<3> So what would you recommend as a secure way then?
<9> Narada: create a random cookie value if it isn't set. then create a file using the cookie value and put serialized data into that file.
<0> drakas: isnt that just using PHP Sessions?
<9> gotaq: no
<3> Drakas: So store everything server side and only use the cookie to look it up?
<9> Narada could use sessions
<9> Narada: thats correct
<3> Hmm.
<9> Narada: msot secure way, if you don't want important data lying around /tmp
<3> Drakas: I might use mysql for that.
<11> ****ing a.
<9> sure, do that then
<9> ?
<11> i have to stop watching
<3> itrebal: What's wrong?
<3> Great.
<9> h20z: ?
Return to
#php
or
Go to some related
logs:
server refused to allocate pty gentoo
eth0: PACKET SNIFFER(/sbin/dhclient3
ubuntu nohup: appending output to `nohup.out'
#centos
MySQL error 1067 (42000): Invalid default value solution
fam.h yum
galgje bot
does not seem to contain cookies at
suse/etc/rc.d/init.d/functions: No such file or directory
debian x window troubleshooting no screen found
|
|