| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24
Comments:
<0> not here... i can't read
<1> eh
<1> k one sec
<2> zircu, already defined in the cl*** i think soo
<2> this is some kind of object orient :(
<3> form action = ""
<3> wtf?
<0> nanotech only the <form> .... </form> is enough
<4> mephistopheles: oh, you are using a very insecure method on trying to connect.. on line 200 var_dump($db);
<1> http://pastebin.com/740453
<1> the scal stuff is being included from a previous file
<0> ok... doesn't matter now ;)
<1> ya
<1> ;)
<3> any idea how to raise php's priveleges
<0> add a print_r($_POST); in the same file... and check out the result
<3> ?
<2> zircu, can you give the details
<2> i dont get you
<5> ColonelPanic: why do you want to?
<4> mephistopheles: details on?
<3> i'm trying to find filesizes of files that *I* have permission to, but php doesn't
<1> k
<2> line 30
<2> line 200
<2> i try to get the p***word by post method
<0> ColonelPanic well, you're *not* php user (I think)
<0> the same user I meant
<3> i know i'm not
<2> but look like the variables dont get it :( , zircu
<3> that's why i want to raise php's privs
<3> i'm happy with it running as me
<3> i just don't know how to get it to do so
<0> mod_php has the server priveleges
<3> i'm using cli php
<0> chown/chmod your .php files
<3> ok
<2> zircu, this file acts somewhat like phpmyadmin
<6> heh
<1> xshad want me to paste the print_r here?
<2> but less function
<1> its 1 line..
<6> changing the owner of the files wont change jack if he is still running php cli as himself
<0> nanotech really? 1 line?
<4> mephistopheles: you need to have more security than what was provided via the paste, what you have is very dangerous
<3> doesn't work, xshad
<1> ya, its a short form ; )
<0> ColonelPanic you'll need chmod +rx
<3> i did 777
<0> ColonelPanic lol :) didn't work?
<2> zircu , can you modify it , please
<0> nanotech paste
<1> Array ( [name] => the man [email] => ****my@php.com [current] => [np***] => [np***2] => [submit_settings] => Save settings )
<3> didn't work your way either
<3> i can run the php file just fine
<3> and i sudo php
<3> and it doesn't work there either
<2> zircu, my file is all-in-one script
<5> ColonelPanic: the files that you want the size of must be 777
<3> right
<3> i don't want to chmod my whole harddrive
<3> and i think you can see why
<4> mephistopheles: i dont know what you mean
<7> why not?
<7> could be fun
<0> nanotech have you filled all fields ?
<3> maybe
<4> all-in-one script?
<3> there has to be a way to raise php's priveleges
<4> 777?
<3> run it as a different user
<1> xshad no, the only 2 fields which have something in em is name and email
<5> ColonelPanic: could be fun :) and there's suexec (i think thats it..)
<1> i left current blank
<3> what is suexec?
<5> look it up
<1> and that is_null isnt working for me
<3> is it a php command?
<5> no
<4> kind of like sudo for apache
<3> oh
<3> but i'm not running this through apache
<2> zircu, that mean : when first run , it provide the login form , then it copies the info into a session , then allow users to use mysql commands
<0> nanotech so? HOW do you want a value for a blank field? it should be blank O.o
<3> it's all on cli
<5> then be a higher priviliged user while running it?
<3> i can be root
<0> all filled fields have its values
<3> but php drops its priveleges as soon as it's run
<2> zircu, modify it as your pleasure :)
<8> hi guys: could somebody help me out? i would like to recreate the photosystem as seen on: http://www.jadbalja.nl/fotoalbum/index.php?FOTO_NR=1&CAT_ID=133
<4> mephistopheles: is this script available publicly on the web? it wil be a security flaw in your code, but besides that.. apparently $db->username and company arent being set properly
<8> What script could i take to adjust? i think creating it from scratch is not the way to go here.
<4> mephistopheles: did you do a var_dump($db) at the line i specified based on the pastebin
<1> xshad im tryin to make it so if the form was submitted and the input "current" wasnt inputed, to echo ok it works.
<1> but is_null is not being my friend ;\
<5> Mosselmaniac: you want a MySQL interface?
<2> zircu, this script is a homework for me :D . can you modify it and post it in pastebin
<8> No, the photos i want to display are in a folder, no need for mysql.
<8> The thumbnails are not there i think.
<0> nanotech don't use is_null, use if ($cur == "") or if(!strlen($cur)
<0> nanotech it should work ;)
<1> thanx xshad ;)
<4> mephistopheles: no i can't, my post key is broke
<5> xshad: nanotech: how about empty() ?
<0> itrebal O.o
<5> xshad: ?
<1> itrebal that too :)
<1> what would i do without ##php ; )
<8> So could somebody help me?
<1> i was kickin my self for like 1 hour
<5> sounds like xshad has an issue with empty() but i dont know why
<1> tryin to figure out why it wasnt workin
<1> heh
<0> itrebal lol :) I NEVER remember to use empty() :)
<5> xshad: :)
<8> i want the tumbnails on the right, and the big image on the left side, with those next picture functionality.
<2> zircu, i tried var-dump as you suggested , but only 1 line error : Access denied for user 'www-data'@'localhost' (using p***word: NO)
<5> mephistopheles: what about 'gallery2' ?
<5> err Mosselmaniac ^^
<0> mephistopheles what do you get typing 'mysql' in a terminal?
<8> don't know what galler2 is?
<0> Mosselmaniac STFW
<8> ?
<2> xshad, it didnt look like what u think , i login in CLI successful
<0> Mosselmaniac "Search The ****ing Web"
<4> xshad: see http://pastebin.com/740424 line 193+
<2> may be some error with the code
<8> bah.
<4> *friendly
<0> !tell mephistopheles about u
<2> xshad, verry sorry , i m new here :p
<5> !tell mephistopheles about guidelines
<0> zircu and? I'm with that code opened
<2> thanks you all
<4> xshad: it sets data from $_POST for authentication after the new conection..
<0> mephistopheles try to submit using: user=root, p***word="" hostname="localhost" and database="test"
<4> xshad: heh i shouldn't be explaining this to you
<0> zircu lol :)
<9> which function should I use for fixing strings when they are used in queries to databases? For example like inputs directly from forms etc..
<2> aneurysm, yes
<9> does mysql_real_escape_string() do the job?
<0> salah sure it does
<2> zircu, object(connection)#1 (5) { ["hostname"]=> string(9) "localhost" ["database"]=> string(5) "study" ["username"]=> string(4) "root" ["p***word"]=> string(6) "123456" ["link_id"]=> resource(2) of type (mysql link) }
<4> mephistopheles: notic you do $db = new connection(); thus db::connection() is called and you're function opens a connection based on $this->* which havn't bent set yet
<2> here is the dump of $db
<4> mephistopheles: see just above^ what you need is a $db->connect() like call
<4> itrebal: whimp
Return to
#php
or
Go to some related
logs:
Ubuntu +sym53c8xx_2
debian shared nfs root
#css
#openzaurus
ipw2200: Attempt to
#linux
X11R6/SourceForge/Mesa6.2/Mesa/include/GL/gl.h
rpmbuild +FC5 +syntax
#web
#php
|
|