Home Page   #javascript  #perl  #c  #openmoko  #php  #ruby-lang  #apache  #cisco  #java  #mysql   Wallpapers Girl
Reliable $1 Web Hosting by 3iX

Channels


#php

25 December 2007

Total 26 pages. You are browsing page 1/26.

First :: Prev :: [1] [2] [3] [4] [5] [...] :: Next :: Last

--- Log opened Tue Dec 25 00:00:46 2007
00:01 <****> Add to the fact that attempting to read the data while a connection is being made (With Socket blocking off) I get no data, Which is to be expected.
00:03 <****> socket_select might be some use...not sure.
00:08 <****> Shrike-, I think your right.. I'll try with the looping again.
00:10 <****> i think so too :)
00:11 <****> i am by no means an expert...just played around a bit with an irc client.
00:14 <****> experts are just those whove played around a bit more than others Shrike-
00:15 <****> hehe
00:15 <****> after years of doing client/server web stuff it's hard to step into the desktop app mentality :)
00:16 <****> hi
00:17 <****> there is a mistake in the book "PHP in a nutshell"
00:17 <****> It isn't a spelling or grammar mistake, it is a real big, general mistake
00:17 <****> how nice.
00:17 <****> Like, I would think that a book on php wouldn't make such a fundamental mistake
00:18 <****> maybe it's not a mistake
00:18 <****> it definitely is
00:18 <****> you don't even need to know php to know it is a mistake
00:18 <****> what is it
00:18 <****> well,
00:19 <****> does it do echo "hello $username!" ?
00:19 <****> the book says to disable server token to limit the ammount of information shown a 404 page. This information is apache version, and a bunch of other info
00:19 <****> this is harmless
00:19 <****> Will stream_set_timeout proc even if there is data on the socket?
00:20 <****> this is the mistake Soskel?
00:20 <****> oh
00:20 <****> I thaought the book wanted people to use $_POST directly in sql queries or something
00:20 <****> see, otherwise web hosts would be getting hacked left and right since they show Apache, PHP and a bunch of other infp
00:20 <****> Ive seen that one a lot of times
00:21 <****> regardless of the actual danger of any information it is better not to provide it, when it isnt necessary Soskel
00:21 <****> it is necisary to spread the word that php rocks
00:21 <****> no... it's better not to go through the hassle and potentially mess things up
00:21 <****> indeed, showing what apache mods are enabled gives immediate attack vectors./
00:21 <****> it is 100% pointless
00:21 <****> you should check the sig for a debian install with a fair few modules.
00:22 <****> that actually got flagged by our pen testers, also that TRACE should be disabled.
00:27 <****> Showing the enabled mods is a huge security risk.
00:28 <****> in any case, it can hardly be called an error in the book.
00:28 <****> If the book is telling you to disable the signature, I completely agree with the book.
00:29 <****> If you're rename()ing a file, does the file's containing folder have to be writeable?
00:29 <****> Yes.
00:29 <****> ofc
00:29 <****> renaming is essentially moving.
00:30 <****> Yeah, that's what I figured
00:30 <****> Thanks
00:30 <****> anyone know of a project to parse kml, store it in a DB and create custom kml based on a search?
00:30 <****> No problem.
00:34 <****> is it possible to save an array on a file and then retreive it using serialize? I am looking at serialize documentation, but it does not say anything about saving on a file. I thought that it were like perl, that you can use serialize to save data structures
00:35 <****> it is.
00:35 <****> serialize will just create a serialized string though. you'll need to use the filesystem functions to save the file.
00:36 <****> Shrike-: ok thanks. Which filesystem function should I use, please? So I can take a look at the documentation for the right functions.
00:37 <****> if you have php 5, then file_put_contents would be best.
00:37 <****> if i have a user registration and they pay with paypal whats the best way of getting the variables posted to use after the fact? Would it be reasonable to put my post vars in a session then pass a sessionid and use that in the paypal processing php to create the user int he database after successful payment? im not sure the best way to deal with it
00:38 <****> IPN?
00:39 <****> instant payment notification
00:39 <****> yes
00:39 <****> its a php that paypal posts shit to after successful payment
00:39 <****> thats the way i approached it when doing paypal. i didn't think it was very elegant though.
00:39 <****> or after transaction went trhough
00:39 <****> Shrike- yea
00:39 <****> im not sure what else could be done though
00:39 <****> not elegant, how so?
00:39 <****> ThinkMedical it sounds reasonable to you?
00:39 <****> i mean
00:39 <****> passing the session ID to paypal and back again
00:40 <****> its resasonable
00:40 <****> Shrike-: unfortunately on my web host I have php4...
00:40 <****> the thing is i cant use paypal api because recurring payments api is extremely limited not like teh subscriptions button or whatever
00:40 <****> GionnyBoss, read up at www.php.net/fopen
00:40 <****> in this case subscriptions button is actually much better
00:41 <****> slb_, if i was to do it again, i think i'd use a database to store the transaction, and pass the database record ID to & fro.
00:41 <****> Shrike-: ok thanks. I don't have a database, because I'm doing a website that does not need it... anyways, I need to store an array, and I think that it's not worth spending more for a database just to store an array
00:41 <****> to store the transaction
00:41 <****> you mean to store the tables
00:41 <****> i mean
00:41 <****> posted stuff
00:41 <****> yeah, rather than use session. at least that way you get a complete audit of whats going on.
00:42 <****> how would it be better though?
00:42 <****> i thought about registering the user but disbaling the account
00:42 <****> Php throws me an error when i try to access files in '/user/home/user' with fopen, how come?
00:42 <****> until it went throuhg
00:42 <****> otherwise deleting it
00:42 <****> but thats not elegant either
00:42 <****> a: not sending session ID (insecure), b: you get a record of what happened if paypal fail to answer for example.
00:42 <****> i've really no idea what the problem is slb_; paypal posts info to a script; you verify it and store it?
00:43 <****> if you want to update an account, i do so based on the supplied email
00:43 <****> im talking about registration
00:43 <****> ah, i deal with a different payment model
00:43 <****> i dont want to register the user until after the transaction is successful
00:43 <****> yes i could see how that would be inelegant
00:44 <****> but i dont know what to do with the post vars
00:44 <****> use a custom field?
00:44 <****> you mean like a custom field and seperate strings like with * or |
00:44 <****> name="custom" value="...session id..."
00:44 <****> yea thats what i was thinking
00:44 <****> paypal allows you to supply a custom field
00:44 <****> i'd say create the user record with a "status" of "inactive", call paypal, then the postback from paypal would set the user record to "active" if payment was taken.
00:44 <****> i thought you meant something else
00:44 <****> Hi. I have installed PHP onto my computer, but when I load a PHP page it does not work! What do I have do to make it work?
00:45 <****> that's my approach Shrike-
00:45 <****> Shrike-: i thought about that too but i also dont want tons of inactive things in my db if it doesnt go through


Total 26 pages. You are browsing page 1/26.

First :: Prev :: [1] [2] [3] [4] [5] [...] :: Next :: Last

Tutti i nuovi CAP Italiani. Come ottenere il database completo