Nabble - PHP - General

Re: php htaccess logins and logouts

2009-11-26T14:37:50Z

Hi,

>
> IIRC if you unset $_SERVER['PHP_AUTH_USER'] and
> $_SERVER['PHP_AUTH_PW'] it will log you out.

I've done some research on this in the past - and not all browsers/web servers honour that as it's the browser that keeps the username/password cached and sends it after a 401 response, so the server knows nothing about the "login" - i.e.

1. User visits page 1
2. Server sends 401 Unauthorised header
3. Browser does not have any login details for the realm and prompts user
4. User inputs credentials, browser re-submits the request with the credentials attached
5. User visits page 2
6. Server sends 401 Unauthorised header
7. Browser has login details for the realm and re-submits the request with the credentials attached

From the conclusion I came to after my research, there is no reliable way for the server to de-authorise a login after a 401 request.

There are tricks you can do on the server, such as changing the authentication realm when the user has logged out - but if the user visits the same site again the realms will match and they will be logged in.

I've seen a "hack" which uses a cookie on the user's machine - if the user has the cookie, the correct authentication realm is returned in the authentication request. If the user doesn't have the cookie, the server sends a random realm to trick the browser into thinking it's not logged in. By the time you've done all that, you might as well just use sessions.

Regards,
Andy
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: php htaccess logins and logouts

2009-11-26T14:16:58Z

On Fri, Nov 27, 2009 at 12:12 AM, Ashley Sheridan
<ash@...> wrote:

> Hi all,
>
> I've got a site set up that is using an htaccess file to provide secure
> access to a directory. That is working fine. What I wondered was, is
> there a way to log out via PHP. As I understand it, the login mechanism
> is part of Apache, so I guess what I'm really asking is, is there a way
> that I can get Apache to end the 'session' that Apache has set up, using
> PHP?
>
> I'm sure I've seen cPanel do it, so I was wondering how easy this would
> be to do myself.

IIRC if you unset $_SERVER['PHP_AUTH_USER'] and
$_SERVER['PHP_AUTH_PW'] it will log you out.

Cheers.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: string concatenation with fgets

2009-11-26T12:57:52Z

So here is my final test code, notice the check for ' ' in the if.

Since I'm on Linux, this has to do with whats between the last LF and
EOF which is nothing but this nothing will get printed out.

$file = fopen("somefile.txt", "r");
while (! feof($file))
{
$names = trim(fgets($file));
if ($names == '')
{
break;
}
print $names."sometext\n";
}
fclose($file);

- aurf

On Nov 24, 2009, at 5:52 PM, ryan wrote:

> Is this what you want
>
> $file = fopen("test.txt", "r");
> while (!feof($file)) {
> $line = trim(fgets($file));
> print $line."sometext\n";
> }
> fclose($file);
>
> outputs
> asometext
> bsometext
> csometext
>
> Ref to http://us3.php.net/manual/en/function.fgets.php. "Reading
> ends when /length/ - 1 bytes have been read, on a newline (which is
> included in the return value), or on EOF (whichever comes first). If
> no length is specified, it will keep reading from the stream until
> it reaches the end of the line. "
>
>
> aurfalien@... wrote:
>> Hi all,
>>
>> I'm trying to append some text to what I read from a file.
>>
>> My code;
>>
>> $file = fopen("foo.txt", "r");
>> while (!feof($file)) {
>> $line = fgets($file);
>> print $line."sometext";
>> }
>> fclose($file);
>>
>> foo,txt;
>> a
>> b
>> c
>> d
>> e
>> f
>> g
>>
>> And when I run the script, it looks like;
>> a
>> sometextb
>> sometextc
>> sometextd
>> ...
>>
>>
>> Any ideas?
>>
>> Thanks in advance,
>> - aurf
>>
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: register_globals and sessions

2009-11-26T12:20:02Z

On Wed, Nov 25, 2009 at 3:01 PM, Allen McCabe <allenmccabe@...> wrote:
> *Warning*: Unknown: Your script possibly relies on a session side-effect
> which existed until PHP 4.2.3. Please be advised that the session extension
> does not consider global variables as a source of data, unless
> register_globals is enabled. You can disable this functionality and this
> warning by setting session.bug_compat_42 or session.bug_compat_warn to off,
> respectively in *Unknown* on line *0*

It sounds like you're trying to use $_SESSION without having a
session_start() call first.

> I have Googled this extensively, and the solutions other people tried
> (turning off the warning) don't work for me; I don't have permission to my
> PHP settings (currently working on a free-hosted site).

There are many settings that can be changed using the function ini_set
(http://php.net/ini_set) and display_errors is one of them.
That said, it is always best to fix stuff like this than just hiding
it. When you just hide errors/warnings/notices things don't always
work reliably.

HTH,

Brady

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

My new address

2009-11-26T10:02:00Z

Acce dot ssRx pro ap vides Men’s He gbh alth prod ak ucts to tr vr eat ere zee ctile dysf ltm unction (ED). Cho ge ose from all three FD xpq A-appr cz oved ED pres uq crip ac tion medi gd cations: Via ff gra, Cia iad lis and Lev ja itra. Only a small per id cent og age of men seek help for ED, alth is ough a lar khi ge num zl ber of men expe wyp rience it in var gds ying deg nq rees. All three F iq DA-app dpj roved dru pxc gs are pro pt ven to be eff nky ective in most hea cev lthy men. See Acces gaw sRx’s prod rz uct information pages for deta iz ils about dos pm ages, dire fw ctions, side eff pg ects, pre ua cautions, freq tj uently ask wvl ed ques dkj tions, links to manu ii facturer web jvb sites and patie vt nt/presc tky ribing infor pp mation. You can also acc sjt ess aVia ezt gra, Ci fmv alis, Lev cy itra compa up rison chart that sum wr marizes medi uq cation info xy rmation for the thr bx ee ED d oig rugs in one cent rsq ral loc oel ation. Via huj gra Silde pd nafil 50/100mg
$1.42 Per P oa ill More info

C prr ia rva lis Tada gb lafil 10/20mg
$1.66 Per P ys ill More info

Levi kj tra Vard js enafil 20mg
$1.72 Per P bk ill More info

Re: PHP Equivalent to Java Jar or Python Eggs

2009-11-26T09:22:13Z

On Thu, 26 Nov 2009 13:09:48 +1030
James McLean <james.mclean@...> wrote:

> On Thu, Nov 26, 2009 at 11:50 AM, <c4632@...> wrote:
> >
> > Has anyone done any work towards packaging of PHP in a manner
> > similar to jar or eggs? I was working on a project the other day
> > with a lot of class files and thought this would be a cool, simple
> > way to deploy the app.
>
> Yes; Greg Beaver has done a lot of work with PHAR, which is very
> similar. See http://au2.php.net/phar
>
> Cheers
>

...it's even bundled with PHP 5.3+

GM

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Re: Detecting The Encoding Of A Text File

2009-11-26T07:45:46Z

I was thinking that if notepad can open it correctly it has headers - but
the link you gave clarify that, my bad.

2009/11/26 Nisse Engström <news.NOSPAM.0ixbtqKe@...>

> On Thu, 26 Nov 2009 15:39:04 +0200, דניאל דנון wrote:
>
> > If windows notepad can detect encoding there must be a way to do it
> > yourself.
> >
> > Maybe try to get the file's headers, I think it should also contain the
> > encoding of the file...
>
> Plain text files don't have any headers. Perhaps they use
> heuristics, eg. examine the distribution of characters to
> determine a probable encoding.
>
> [Quick Google...]
>
> <http://blogs.msdn.com/oldnewthing/archive/2007/04/17/2158334.aspx>
>
>
> /Nisse
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

--
Use ROT26 for best security

Re: Re: Detecting The Encoding Of A Text File

2009-11-26T06:49:26Z

On Thu, 26 Nov 2009 15:39:04 +0200, דניאל דנון wrote:

> If windows notepad can detect encoding there must be a way to do it
> yourself.
>
> Maybe try to get the file's headers, I think it should also contain the
> encoding of the file...

Plain text files don't have any headers. Perhaps they use
heuristics, eg. examine the distribution of characters to
determine a probable encoding.

[Quick Google...]

<http://blogs.msdn.com/oldnewthing/archive/2007/04/17/2158334.aspx>

/Nisse

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

php htaccess logins and logouts

2009-11-26T05:42:48Z

Hi all,

I've got a site set up that is using an htaccess file to provide secure
access to a directory. That is working fine. What I wondered was, is
there a way to log out via PHP. As I understand it, the login mechanism
is part of Apache, so I guess what I'm really asking is, is there a way
that I can get Apache to end the 'session' that Apache has set up, using
PHP?

I'm sure I've seen cPanel do it, so I was wondering how easy this would
be to do myself.

Thanks,
Ash
http://www.ashleysheridan.co.uk

Re: Re: Detecting The Encoding Of A Text File

2009-11-26T05:39:04Z

If windows notepad can detect encoding there must be a way to do it
yourself.

Maybe try to get the file's headers, I think it should also contain the
encoding of the file...

2009/11/26 Nitsan Bin-Nun <nitsanbn@...>

> Someone have already suggested it but I haven't tried it yet.
>
> The thing is that right now it contains Hebrew, but tommorrow this file
> will
> be in German or any other accented language.
> I'm trying to create a function which would detect the encoding and convert
> it into UTF8.
>
> (I don't have much experience in encoding.. :( )
>
> 2009/11/26 Nisse Engström <news.NOSPAM.0ixbtqKe@...>
>
> > On Thu, 26 Nov 2009 06:55:31 +0200, Nitsan Bin-Nun wrote:
> >
> > > Hi,
> > >
> > > I have been trying for the last couple of hours to determine the
> > > encoding of a text file (.txt in windowz).
> > >
> > > I have this code:
> > >
> > > $contents = file_get_contents($config['
> > > txt_dir'] . $file);
> > > $encoding = mb_detect_encoding($contents,
> > > "UTF-8,ISO-8859-1,WINDOWS-1252"); //,Windows-1255
> > >
> > > echo "||encoding:".$encoding."||";
> > >
> > > if ($encoding == 'UTF-8')
> > > {
> > > $utfcontents = $contents;
> > > }
> > > else if ($encoding == 'ISO-8859-1')
> > > {
> > > $utfcontents = utf8_encode($contents);
> > > }
> > >
> > > var_dump($utfcontents);
> > >
> > > The $encoding is ISO-8859-1, the text file contains Hebrew characters,
> > then
> > > I'm converting it to utf8.
> > >
> > > The above code is outputing gibbrish, it seems that it has converted it
> > in
> > > some way but not in the
> > > proper way that it should have converted it.
> >
> > If you know that the file contains Hebrew, maybe you should
> > try converting from ISO-8859-8?
> >
> >
> > /Nisse
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, visit: http://www.php.net/unsub.php
> >
> >
>

--
Use ROT26 for best security

Re: Re: Detecting The Encoding Of A Text File

2009-11-26T05:38:35Z

On Thu, 2009-11-26 at 15:39 +0200, דניאל דנון wrote:

> If windows notepad can detect encoding there must be a way to do it
> yourself.
>
> Maybe try to get the file's headers, I think it should also contain the
> encoding of the file...
>
> 2009/11/26 Nitsan Bin-Nun <nitsanbn@...>
>
> > Someone have already suggested it but I haven't tried it yet.
> >
> > The thing is that right now it contains Hebrew, but tommorrow this file
> > will
> > be in German or any other accented language.
> > I'm trying to create a function which would detect the encoding and convert
> > it into UTF8.
> >
> > (I don't have much experience in encoding.. :( )
> >
> > 2009/11/26 Nisse Engström <news.NOSPAM.0ixbtqKe@...>
> >
> > > On Thu, 26 Nov 2009 06:55:31 +0200, Nitsan Bin-Nun wrote:
> > >
> > > > Hi,
> > > >
> > > > I have been trying for the last couple of hours to determine the
> > > > encoding of a text file (.txt in windowz).
> > > >
> > > > I have this code:
> > > >
> > > > $contents = file_get_contents($config['
> > > > txt_dir'] . $file);
> > > > $encoding = mb_detect_encoding($contents,
> > > > "UTF-8,ISO-8859-1,WINDOWS-1252"); //,Windows-1255
> > > >
> > > > echo "||encoding:".$encoding."||";
> > > >
> > > > if ($encoding == 'UTF-8')
> > > > {
> > > > $utfcontents = $contents;
> > > > }
> > > > else if ($encoding == 'ISO-8859-1')
> > > > {
> > > > $utfcontents = utf8_encode($contents);
> > > > }
> > > >
> > > > var_dump($utfcontents);
> > > >
> > > > The $encoding is ISO-8859-1, the text file contains Hebrew characters,
> > > then
> > > > I'm converting it to utf8.
> > > >
> > > > The above code is outputing gibbrish, it seems that it has converted it
> > > in
> > > > some way but not in the
> > > > proper way that it should have converted it.
> > >
> > > If you know that the file contains Hebrew, maybe you should
> > > try converting from ISO-8859-8?
> > >
> > >
> > > /Nisse
> > >
> > > --
> > > PHP General Mailing List (http://www.php.net/)
> > > To unsubscribe, visit: http://www.php.net/unsub.php
> > >
> > >
> >
>
>
>

A plain text file wouldn't have headers like that would it? At least,
not in the sense that an image file has a header, or an office document
file has a header.

Thanks,
Ash
http://www.ashleysheridan.co.uk

SOAP: Return object to client

2009-11-26T04:41:34Z

Hi All,

I am implementing the web service through PHP SOAP library.

Actually I want to return the object to the client through web service so
that client can call all the methods of that object.

Please help me out.

Regards,
Manoj

Re: Re: Detecting The Encoding Of A Text File

2009-11-26T04:32:44Z

Someone have already suggested it but I haven't tried it yet.

The thing is that right now it contains Hebrew, but tommorrow this file will
be in German or any other accented language.
I'm trying to create a function which would detect the encoding and convert
it into UTF8.

(I don't have much experience in encoding.. :( )

2009/11/26 Nisse Engström <news.NOSPAM.0ixbtqKe@...>

> On Thu, 26 Nov 2009 06:55:31 +0200, Nitsan Bin-Nun wrote:
>
> > Hi,
> >
> > I have been trying for the last couple of hours to determine the
> > encoding of a text file (.txt in windowz).
> >
> > I have this code:
> >
> > $contents = file_get_contents($config['
> > txt_dir'] . $file);
> > $encoding = mb_detect_encoding($contents,
> > "UTF-8,ISO-8859-1,WINDOWS-1252"); //,Windows-1255
> >
> > echo "||encoding:".$encoding."||";
> >
> > if ($encoding == 'UTF-8')
> > {
> > $utfcontents = $contents;
> > }
> > else if ($encoding == 'ISO-8859-1')
> > {
> > $utfcontents = utf8_encode($contents);
> > }
> >
> > var_dump($utfcontents);
> >
> > The $encoding is ISO-8859-1, the text file contains Hebrew characters,
> then
> > I'm converting it to utf8.
> >
> > The above code is outputing gibbrish, it seems that it has converted it
> in
> > some way but not in the
> > proper way that it should have converted it.
>
> If you know that the file contains Hebrew, maybe you should
> try converting from ISO-8859-8?
>
>
> /Nisse
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

Re: Wiki recommendation?

2009-11-26T01:40:06Z

Jonathan Tapicer wrote:

> I also recommend dokuwiki (with a k, not c :) ):
> http://www.dokuwiki.org/

I will add just my 2 cts to that. I have used several wikis but I always
come back to DokuWiki. Among other things that I like about it, like
plugins, is the fact that it is file based. It can be nice sometimes to
be able to make certain changes to your pages with a normal editor,
search and replace tool or whatever.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Detecting The Encoding Of A Text File

2009-11-26T00:17:43Z

On Thu, 26 Nov 2009 06:55:31 +0200, Nitsan Bin-Nun wrote:

> Hi,
>
> I have been trying for the last couple of hours to determine the
> encoding of a text file (.txt in windowz).
>
> I have this code:
>
> $contents = file_get_contents($config['
> txt_dir'] . $file);
> $encoding = mb_detect_encoding($contents,
> "UTF-8,ISO-8859-1,WINDOWS-1252"); //,Windows-1255
>
> echo "||encoding:".$encoding."||";
>
> if ($encoding == 'UTF-8')
> {
> $utfcontents = $contents;
> }
> else if ($encoding == 'ISO-8859-1')
> {
> $utfcontents = utf8_encode($contents);
> }
>
> var_dump($utfcontents);
>
> The $encoding is ISO-8859-1, the text file contains Hebrew characters, then
> I'm converting it to utf8.
>
> The above code is outputing gibbrish, it seems that it has converted it in
> some way but not in the
> proper way that it should have converted it.

If you know that the file contains Hebrew, maybe you should
try converting from ISO-8859-8?

/Nisse

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Wiki recommendation?

2009-11-26T00:12:20Z

Skip Evans wrote:

> Hey all,
>
> Thanks much for the recommendations. I'll check them out.
>
> We don't need fine grained control over access; basically admins that
> can modify content and the public who cannot.
>
> But right now DocuWiki is sounding good, and I'd rather, for some
> strange reason, not use a DB, although I can't justify that in any
> rational way. I mean, MySQL is already on the machine.

Perhaps good enough reason for NOT wanting to use a database ;)
Although a lot more stable than it used to be - but until one can run a backup
transparently at intervals is it really suitable for live data? My own live
sites just mirror to a backup machine including a backup of the database
automatically.

--
Lester Caine - G8HFL
-----------------------------
Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk//
Firebird - http://www.firebirdsql.org/index.php

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Wiki recommendation?

2009-11-25T21:03:34Z

Well, if you want to get really extreme, you could use TiddlyWiki:
http://www.tiddlywiki.com/

It's a wiki contained in a single HTML file. No database. No server side
scripting. No server! hah

-TG

----- Original Message -----
From: Skip Evans <skip@...>
To: TG <tg-php@...>
Cc: Jonathan Tapicer <tapicer@...>, aurfalien@...,
"php-general@..." <php-general@...>
Date: Wed, 25 Nov 2009 22:33:54 -0600
Subject: Re: [PHP] Wiki recommendation?

> Hey all,
>
> Thanks much for the recommendations. I'll check them out.
>
> We don't need fine grained control over access; basically
> admins that can modify content and the public who cannot.
>
> But right now DocuWiki is sounding good, and I'd rather, for
> some strange reason, not use a DB, although I can't justify
> that in any rational way. I mean, MySQL is already on the machine.
>
> Thanks again!
>
> Skip
>
> TG wrote:
> > A while back I set up a TikiWiki for a client. I think I liked it

better
> > than any of the other wikis I've messed with. But honestly, I didn't
get

> > to use it much and I've only ever used Mediawiki to any real length.
> >
> > Definitely give it a look, though.
> >
> > -TG
> >
> > ----- Original Message -----
> > From: Jonathan Tapicer <tapicer@...>
> > To: aurfalien@...
> > Cc: Skip Evans <skip@...>, "php-general@..."
> > <php-general@...>
> > Date: Wed, 25 Nov 2009 23:54:07 -0300
> > Subject: Re: [PHP] Wiki recommendation?
> >
> >> On Wed, Nov 25, 2009 at 8:37 PM, <aurfalien@...> wrote:
> >>> On Nov 25, 2009, at 2:42 PM, Skip Evans wrote:
> >>>
> >>>> Hey all,
> >>>>
> >>>> I'm looking for a good Wiki to maintain documentation on a large
> >>>> commercial web site that is always growing.
> >>>>
> >>>> DokuWiki is the only one I've installed and used at any length, so
> > before
> >>>> I just use that one again I'd like to hear from the peanut gallery

what

> >>>> other suggestions you'd have.
> >>>>
> >>>> Remember, this will be for end user documentation for a large
> > commercial
> >>>> CMS type system, something site admins will go to for information on
> > site
> >>>> features, updates, etc.
> >>>>
> >>>> Let the shouting begin!
> >>>>
> >>>> Thanks, all, and a very happy eating-charred-dead-bird-flesh day to

you
> >>>> all!!!
> >>>>
> >>>> Skip
> >>>
> >>> Well, I've used DocuWiki and bit new to MediaWiki which I think
> > WikiPedia
> >>> uses.
> >>>
> >>> MediaWiki uses a MySQL DB were as DocuWiki is a tree dir structure
kind

> > of
> >>> thing.
> >>>
> >>> I actually prefer DocuWiki but maybe thats because I didn't setup
> > MediaWiki
> >>> correctly.
> >>>
> >>> Cacti uses DocuWiki by the way and I personally avoid DB usage if
> > possible.
> >>> I think its easier to corrupt a DB then it is to corrupt a filesystem.
> >>>
> >>> However I'm unsure of how scalable a pure file system based Wiki is,

> > think
> >>> if you put it on a mirrored disk with a decent cache on the Raid
> > controller,
> >>> you'll be fine performance and DR wise.
> >>>
> >>> If its Linux, then MD based (software raids) works pretty well.
> >>>
> >>> - aurf
> >>>
> >>>
> >>>
> >>> --
> >>> PHP General Mailing List (http://www.php.net/)
> >>> To unsubscribe, visit: http://www.php.net/unsub.php
> >>>
> >>>
> >> I also recommend dokuwiki (with a k, not c :) ):

http://www.dokuwiki.org/

> >>
> >> Regards,
> >>
> >> Jonathan
> >>
> >> --
> >> PHP General Mailing List (http://www.php.net/)
> >> To unsubscribe, visit: http://www.php.net/unsub.php
> >>
> >>
> >
>
> --
> ====================================
> Skip Evans
> PenguinSites.com, LLC
> 503 S Baldwin St, #1
> Madison WI 53703
> 608.250.2720
> http://penguinsites.com
> ------------------------------------
> Those of you who believe in
> telekinesis, raise my hand.
> -- Kurt Vonnegut
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Detecting The Encoding Of A Text File

2009-11-25T20:55:31Z

Hi,

I have been trying for the last couple of hours to determine the
encoding of a text file (.txt in windowz).

I have this code:

$contents = file_get_contents($config['
txt_dir'] . $file);
$encoding = mb_detect_encoding($contents,
"UTF-8,ISO-8859-1,WINDOWS-1252"); //,Windows-1255

echo "||encoding:".$encoding."||";

if ($encoding == 'UTF-8')
{
$utfcontents = $contents;
}
else if ($encoding == 'ISO-8859-1')
{
$utfcontents = utf8_encode($contents);
}

var_dump($utfcontents);

The $encoding is ISO-8859-1, the text file contains Hebrew characters, then
I'm converting it to utf8.

The above code is outputing gibbrish, it seems that it has converted it in
some way but not in the
proper way that it should have converted it.

My page is UTF-8 encoded, without BOM, I send UTF-8 headers to the browser
and HTML content
encoding meta tag as well.

I have no idea what I am doing wrong.

I would highly appreciate it if someone could point me to the right
direction.

Thanks in Advance,

Nitsan

Re: Wiki recommendation?

2009-11-25T20:33:54Z

Hey all,

Thanks much for the recommendations. I'll check them out.

We don't need fine grained control over access; basically
admins that can modify content and the public who cannot.

But right now DocuWiki is sounding good, and I'd rather, for
some strange reason, not use a DB, although I can't justify
that in any rational way. I mean, MySQL is already on the machine.

Thanks again!

Skip

TG wrote:

> A while back I set up a TikiWiki for a client. I think I liked it better
> than any of the other wikis I've messed with. But honestly, I didn't get
> to use it much and I've only ever used Mediawiki to any real length.
>
> Definitely give it a look, though.
>
> -TG
>
> ----- Original Message -----
> From: Jonathan Tapicer <tapicer@...>
> To: aurfalien@...
> Cc: Skip Evans <skip@...>, "php-general@..."
> <php-general@...>
> Date: Wed, 25 Nov 2009 23:54:07 -0300
> Subject: Re: [PHP] Wiki recommendation?
>
>> On Wed, Nov 25, 2009 at 8:37 PM, <aurfalien@...> wrote:
>>> On Nov 25, 2009, at 2:42 PM, Skip Evans wrote:
>>>
>>>> Hey all,
>>>>
>>>> I'm looking for a good Wiki to maintain documentation on a large
>>>> commercial web site that is always growing.
>>>>
>>>> DokuWiki is the only one I've installed and used at any length, so
> before
>>>> I just use that one again I'd like to hear from the peanut gallery what
>>>> other suggestions you'd have.
>>>>
>>>> Remember, this will be for end user documentation for a large
> commercial
>>>> CMS type system, something site admins will go to for information on
> site
>>>> features, updates, etc.
>>>>
>>>> Let the shouting begin!
>>>>
>>>> Thanks, all, and a very happy eating-charred-dead-bird-flesh day to you
>>>> all!!!
>>>>
>>>> Skip
>>>
>>> Well, I've used DocuWiki and bit new to MediaWiki which I think
> WikiPedia
>>> uses.
>>>
>>> MediaWiki uses a MySQL DB were as DocuWiki is a tree dir structure kind
> of
>>> thing.
>>>
>>> I actually prefer DocuWiki but maybe thats because I didn't setup
> MediaWiki
>>> correctly.
>>>
>>> Cacti uses DocuWiki by the way and I personally avoid DB usage if
> possible.
>>> I think its easier to corrupt a DB then it is to corrupt a filesystem.
>>>
>>> However I'm unsure of how scalable a pure file system based Wiki is, I
> think
>>> if you put it on a mirrored disk with a decent cache on the Raid
> controller,
>>> you'll be fine performance and DR wise.
>>>
>>> If its Linux, then MD based (software raids) works pretty well.
>>>
>>> - aurf
>>>
>>>
>>>
>>> --
>>> PHP General Mailing List (http://www.php.net/)
>>> To unsubscribe, visit: http://www.php.net/unsub.php
>>>
>>>
>> I also recommend dokuwiki (with a k, not c :) ): http://www.dokuwiki.org/
>>
>> Regards,
>>
>> Jonathan
>>
>> --
>> PHP General Mailing List (http://www.php.net/)
>> To unsubscribe, visit: http://www.php.net/unsub.php
>>
>>
>

--
====================================
Skip Evans
PenguinSites.com, LLC
503 S Baldwin St, #1
Madison WI 53703
608.250.2720
http://penguinsites.com
------------------------------------
Those of you who believe in
telekinesis, raise my hand.
-- Kurt Vonnegut

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Wiki recommendation?

2009-11-25T20:12:43Z

A while back I set up a TikiWiki for a client. I think I liked it better
than any of the other wikis I've messed with. But honestly, I didn't get
to use it much and I've only ever used Mediawiki to any real length.

Definitely give it a look, though.

-TG

----- Original Message -----
From: Jonathan Tapicer <tapicer@...>
To: aurfalien@...
Cc: Skip Evans <skip@...>, "php-general@..."
<php-general@...>
Date: Wed, 25 Nov 2009 23:54:07 -0300
Subject: Re: [PHP] Wiki recommendation?

> On Wed, Nov 25, 2009 at 8:37 PM, <aurfalien@...> wrote:
> > On Nov 25, 2009, at 2:42 PM, Skip Evans wrote:
> >
> >> Hey all,
> >>
> >> I'm looking for a good Wiki to maintain documentation on a large
> >> commercial web site that is always growing.
> >>
> >> DokuWiki is the only one I've installed and used at any length, so
before
> >> I just use that one again I'd like to hear from the peanut gallery what
> >> other suggestions you'd have.
> >>
> >> Remember, this will be for end user documentation for a large
commercial
> >> CMS type system, something site admins will go to for information on
site

> >> features, updates, etc.
> >>
> >> Let the shouting begin!
> >>
> >> Thanks, all, and a very happy eating-charred-dead-bird-flesh day to you
> >> all!!!
> >>
> >> Skip
> >
> >
> > Well, I've used DocuWiki and bit new to MediaWiki which I think

WikiPedia
> > uses.
> >
> > MediaWiki uses a MySQL DB were as DocuWiki is a tree dir structure kind
of
> > thing.
> >
> > I actually prefer DocuWiki but maybe thats because I didn't setup
MediaWiki
> > correctly.
> >
> > Cacti uses DocuWiki by the way and I personally avoid DB usage if
possible.
> >
> > I think its easier to corrupt a DB then it is to corrupt a filesystem.
> >
> > However I'm unsure of how scalable a pure file system based Wiki is, I
think
> > if you put it on a mirrored disk with a decent cache on the Raid
controller,

> > you'll be fine performance and DR wise.
> >
> > If its Linux, then MD based (software raids) works pretty well.
> >
> > - aurf
> >
> >
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, visit: http://www.php.net/unsub.php
> >
> >
>
> I also recommend dokuwiki (with a k, not c :) ): http://www.dokuwiki.org/
>
> Regards,
>
> Jonathan
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Wiki recommendation?

2009-11-25T18:54:07Z

On Wed, Nov 25, 2009 at 8:37 PM, <aurfalien@...> wrote:

> On Nov 25, 2009, at 2:42 PM, Skip Evans wrote:
>
>> Hey all,
>>
>> I'm looking for a good Wiki to maintain documentation on a large
>> commercial web site that is always growing.
>>
>> DokuWiki is the only one I've installed and used at any length, so before
>> I just use that one again I'd like to hear from the peanut gallery what
>> other suggestions you'd have.
>>
>> Remember, this will be for end user documentation for a large commercial
>> CMS type system, something site admins will go to for information on site
>> features, updates, etc.
>>
>> Let the shouting begin!
>>
>> Thanks, all, and a very happy eating-charred-dead-bird-flesh day to you
>> all!!!
>>
>> Skip
>
>
> Well, I've used DocuWiki and bit new to MediaWiki which I think WikiPedia
> uses.
>
> MediaWiki uses a MySQL DB were as DocuWiki is a tree dir structure kind of
> thing.
>
> I actually prefer DocuWiki but maybe thats because I didn't setup MediaWiki
> correctly.
>
> Cacti uses DocuWiki by the way and I personally avoid DB usage if possible.
>
> I think its easier to corrupt a DB then it is to corrupt a filesystem.
>
> However I'm unsure of how scalable a pure file system based Wiki is, I think
> if you put it on a mirrored disk with a decent cache on the Raid controller,
> you'll be fine performance and DR wise.
>
> If its Linux, then MD based (software raids) works pretty well.
>
> - aurf
>
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

I also recommend dokuwiki (with a k, not c :) ): http://www.dokuwiki.org/

Regards,

Jonathan

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: PHP Equivalent to Java Jar or Python Eggs

2009-11-25T18:39:48Z

On Thu, Nov 26, 2009 at 11:50 AM, <c4632@...> wrote:
>
> Has anyone done any work towards packaging of PHP in a manner similar to jar or eggs? I was working on a project the other day with a lot of class files and thought this would be a cool, simple way to deploy the app.

Yes; Greg Beaver has done a lot of work with PHAR, which is very
similar. See http://au2.php.net/phar

Cheers

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

PHP Equivalent to Java Jar or Python Eggs

2009-11-25T17:20:42Z

Has anyone done any work towards packaging of PHP in a manner similar to jar or eggs? I was working on a project the other day with a lot of class files and thought this would be a cool, simple way to deploy the app.

Re: how to prevent a mild DOSS attack?

2009-11-25T16:44:44Z

On Wed, Nov 25, 2009 at 3:57 PM, Ashley Sheridan
<ash@...> wrote:

> On Wed, 2009-11-25 at 16:38 -0600, LAMP wrote:
>
>> hi guys,
>> this morning I got complains from website owner and tons of visitors -
>> nobody was able to access the website. it will just timeout.
>> I contacted hosting company for more info but they said the virtual
>> privet server, where the website is, has a lot of traffic and 512MB of
>> RAM is not enough and I have to make an upgrade to at least 1GB etc.
>> it does a make a sense.
>> though, at 4pm I, nor 10 other people I asked for help, was able to
>> access to the website.
>> it was a little bit fishy about BIG traffic whole day long (the website
>> is far from it) and, since I don't have a problem accessing WHM/cPanel
>> of the server, I downloaded apache access file (stupid, I supposed to do
>> it in the morning) and found 20-30 IP addresses, repeatedly were trying
>> to access one (only one) page (something like article.php). and they
>> were requesting the same page so frequently - nobody else was able to
>> access to the website. it looked to me like a little DOSS attack - where
>> attacker wanted just to make the website busy, not to crush the server.
>> I contacted hosting company again. they said there is nothing they can
>> do about this- even I'm paying them to manage my virtual server (I can
>> manage this way by my self too). of course they can if I pay extra :-(
>>
>> now, my question is: is there anything I can do to stop these attacks
>> using php? something? anything?
>>
>> thanks
>> L
>>
>
>
> There's nothing you could do with PHP to fix this really, as trying to
> block IP addresses from there would be expensive for the processor and
> memory of the server.
>
> You could use the cPanel to block access to the offending IP addresses
> though.
>
> Thanks,
> Ash
> http://www.ashleysheridan.co.uk
>
>
>

Ok... serious answer. The DoS is either coming from script kiddies
dumb enough to do it from their own IP, or its coming from a bot-net
comprised of computers who's owners are morons and don't keep their
computer secure. Either way, do a WHOIS, reverse DNS query, and
traceroute on the IPs. You should be able to find the ISPs of the
attacking systems. Email the ISP tech department with your info and
let them take care of the offending systems.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: how to prevent a mild DOSS attack?

2009-11-25T16:24:09Z

Or DoS back at em. :-D

On Wed, Nov 25, 2009 at 3:57 PM, Ashley Sheridan
<ash@...> wrote:

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Wiki recommendation?

2009-11-25T15:37:56Z

On Nov 25, 2009, at 2:42 PM, Skip Evans wrote:

> Hey all,
>
> I'm looking for a good Wiki to maintain documentation on a large
> commercial web site that is always growing.
>
> DokuWiki is the only one I've installed and used at any length, so
> before I just use that one again I'd like to hear from the peanut
> gallery what other suggestions you'd have.
>
> Remember, this will be for end user documentation for a large
> commercial CMS type system, something site admins will go to for
> information on site features, updates, etc.
>
> Let the shouting begin!
>
> Thanks, all, and a very happy eating-charred-dead-bird-flesh day to
> you all!!!
>
> Skip

Well, I've used DocuWiki and bit new to MediaWiki which I think
WikiPedia uses.

MediaWiki uses a MySQL DB were as DocuWiki is a tree dir structure
kind of thing.

I actually prefer DocuWiki but maybe thats because I didn't setup
MediaWiki correctly.

Cacti uses DocuWiki by the way and I personally avoid DB usage if
possible.

I think its easier to corrupt a DB then it is to corrupt a filesystem.

However I'm unsure of how scalable a pure file system based Wiki is, I
think if you put it on a mirrored disk with a decent cache on the Raid
controller, you'll be fine performance and DR wise.

If its Linux, then MD based (software raids) works pretty well.

- aurf

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Create client certificate with openssl

2009-11-25T15:03:34Z

Hello,

on 11/25/2009 05:53 AM Tanveer Chowdhury said the following:

> Hi all,
>
> I have an apache server and for that I created CA as the signing authority
> using openssl.
>
> Now I created a php page which will generate client certificates with key
> and will sign by CA. Now the output is in .pem .
> Now how to convert it in .p12 for exporting it in client browser..
>
> Again, If using exec gives another problem which is it asks for export
> password so how to give this via php.

You may want to take a look at this class:

http://www.phpclasses.org/crypt_openssl

--

Regards,
Manuel Lemos

Find and post PHP jobs
http://www.phpclasses.org/jobs/

PHP Classes - Free ready to use OOP components written in PHP
http://www.phpclasses.org/

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

register_globals and sessions

2009-11-25T15:01:15Z

LPAC - Arts for Youth - Seat OrdersI am getting the following error message,
but ONLY on a page where I am querying multiple tables, and I don't see the
correlation:

*
*
*Warning*: Unknown: Your script possibly relies on a session side-effect
which existed until PHP 4.2.3. Please be advised that the session extension
does not consider global variables as a source of data, unless
register_globals is enabled. You can disable this functionality and this
warning by setting session.bug_compat_42 or session.bug_compat_warn to off,
respectively in *Unknown* on line *0*

I have Googled this extensively, and the solutions other people tried
(turning off the warning) don't work for me; I don't have permission to my
PHP settings (currently working on a free-hosted site).

Does ANYONE know what might be causing this?

On my login page, I use this code snippet to instantiate my SESSION
variables for the session:

// Register $myusername, $mypassword and redirect to "default.php?page=211"
$_SESSION['myusername'] = $myusername;
$_SESSION['mypassword'] = $mypassword;

Again, the error only comes up on the page where I am querying multiple.

If you would like to take a look at this, follow this link and sign in as
username: micky & password: 123456 (
http://lpacmarketing.hostzi.com/afy/orders/)

You will notice on other pages, that error doesn't display, just this one.

Any help would be wonderful, I don't want my users to see this when the
order system is opened for their use.

Thanks!

Re: how to prevent a mild DOSS attack?

2009-11-25T14:57:59Z

On Wed, 2009-11-25 at 16:38 -0600, LAMP wrote:

> hi guys,
> this morning I got complains from website owner and tons of visitors -
> nobody was able to access the website. it will just timeout.
> I contacted hosting company for more info but they said the virtual
> privet server, where the website is, has a lot of traffic and 512MB of
> RAM is not enough and I have to make an upgrade to at least 1GB etc.
> it does a make a sense.
> though, at 4pm I, nor 10 other people I asked for help, was able to
> access to the website.
> it was a little bit fishy about BIG traffic whole day long (the website
> is far from it) and, since I don't have a problem accessing WHM/cPanel
> of the server, I downloaded apache access file (stupid, I supposed to do
> it in the morning) and found 20-30 IP addresses, repeatedly were trying
> to access one (only one) page (something like article.php). and they
> were requesting the same page so frequently - nobody else was able to
> access to the website. it looked to me like a little DOSS attack - where
> attacker wanted just to make the website busy, not to crush the server.
> I contacted hosting company again. they said there is nothing they can
> do about this- even I'm paying them to manage my virtual server (I can
> manage this way by my self too). of course they can if I pay extra :-(
>
> now, my question is: is there anything I can do to stop these attacks
> using php? something? anything?
>
> thanks
> L
>

There's nothing you could do with PHP to fix this really, as trying to
block IP addresses from there would be expensive for the processor and
memory of the server.

You could use the cPanel to block access to the offending IP addresses
though.

Thanks,
Ash
http://www.ashleysheridan.co.uk

Wiki recommendation?

2009-11-25T14:42:40Z

Hey all,

I'm looking for a good Wiki to maintain documentation on a
large commercial web site that is always growing.

DokuWiki is the only one I've installed and used at any
length, so before I just use that one again I'd like to hear
from the peanut gallery what other suggestions you'd have.

Remember, this will be for end user documentation for a large
commercial CMS type system, something site admins will go to
for information on site features, updates, etc.

Let the shouting begin!

Thanks, all, and a very happy eating-charred-dead-bird-flesh
day to you all!!!

Skip

--
====================================
Skip Evans
PenguinSites.com, LLC
503 S Baldwin St, #1
Madison WI 53703
608.250.2720
http://penguinsites.com
------------------------------------
Those of you who believe in
telekinesis, raise my hand.
-- Kurt Vonnegut

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: function not returning query

2009-11-25T14:39:11Z

On Nov 25, 2009, at 4:32 AM, Ashley Sheridan wrote:

> On Tue, 2009-11-24 at 23:27 -0800, Allen McCabe wrote:
>
>> If I were to loop through my inputs, I could just exclude any
>> problematic names, eg.:
>>
>> foreach ($_POST as $var = $val)
>> {
>> if ($var != filter.x || $var != filter.y)
>> {
>> $var = $val;
>> }
>> }
>>
>> Like that?

> Not really, what if someone else decided they wanted to throw in their
> own form field values in the hope of breaking your system? It's much
> better to be specifically looking for certain form fields and certain
> field values/ranges. For example, if you had some fields that would
> filter something by cost, you might have two form fields named 'max' and
> 'min' which would be ranges for the cost. You should check that these
> fields only contain numbers for example before processing them. Any data
> coming from the client-side is untrustworthy and should be regarded as
> tainted until you can prove otherwise.
>
> Thanks,
> Ash

The system Ash is referring to is a whitebox approach. You know what you should get in, so only accept those values. A simple thing to accomplish what you're trying to do, Allen, would be to create an array of required/accepted fields...

<?php
$acceptable = array('green', 'blue', 'red');
foreach ($_POST as $var => $val) {
if (in_array ($var, $acceptable)) {
// Do whatever here
} else {
// Not acceptable - throw error message or do nothing
}
}
?>

Hope that helps.
~Philip
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

how to prevent a mild DOSS attack?

2009-11-25T14:38:05Z

hi guys,
this morning I got complains from website owner and tons of visitors -
nobody was able to access the website. it will just timeout.
I contacted hosting company for more info but they said the virtual
privet server, where the website is, has a lot of traffic and 512MB of
RAM is not enough and I have to make an upgrade to at least 1GB etc.
it does a make a sense.
though, at 4pm I, nor 10 other people I asked for help, was able to
access to the website.
it was a little bit fishy about BIG traffic whole day long (the website
is far from it) and, since I don't have a problem accessing WHM/cPanel
of the server, I downloaded apache access file (stupid, I supposed to do
it in the morning) and found 20-30 IP addresses, repeatedly were trying
to access one (only one) page (something like article.php). and they
were requesting the same page so frequently - nobody else was able to
access to the website. it looked to me like a little DOSS attack - where
attacker wanted just to make the website busy, not to crush the server.
I contacted hosting company again. they said there is nothing they can
do about this- even I'm paying them to manage my virtual server (I can
manage this way by my self too). of course they can if I pay extra :-(

now, my question is: is there anything I can do to stop these attacks
using php? something? anything?

thanks
L

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Detecting The Encoding Of A Text File

2009-11-25T12:30:43Z

Hi,

I have been trying for the last couple of hours to determine the
encoding of a text file (.txt in windowz).

I have this code:

$contents = file_get_contents($config['txt_dir'] . $file);
$encoding = mb_detect_encoding($contents,
"UTF-8,ISO-8859-1,WINDOWS-1252"); //,Windows-1255

echo "||encoding:".$encoding."||";

if ($encoding == 'UTF-8')
{
$utfcontents = $contents;
}
else if ($encoding == 'ISO-8859-1')
{
$utfcontents = utf8_encode($contents);
}

var_dump($utfcontents);

The $encoding is ISO-8859-1, the text file contains Hebrew characters, then
I'm converting it to utf8.

The above code is outputing gibbrish, it seems that it has converted it in
some way but not in the
proper way that it should have converted it.

My page is UTF-8 encoded, without BOM, I send UTF-8 headers to the browser
and HTML content
encoding meta tag as well.

I have no idea what I am doing wrong.

I would highly appreciate it if someone could point me to the right
direction.

Thanks in Advance,

Nitsan

Re: php mail() function

2009-11-25T11:26:29Z

It looks like using XAMPP wasn't strictly necessary. I tried running
this example again using my previous versions of mysql and apache and
it worked fine. So the key is to configure Sendmail as described at
the URL I gave.

On Wed, Nov 25, 2009 at 10:58 AM, James Prentice <prentice.j.a@...> wrote:

> After a long delay, I've finally got mail working. I had decided to
> move on in the book that I'm working through (Head First PHP & MySQL)
> but doubled back to address the mail issue again. This is how I
> finally got it to work:
>
> 1. Switched to XAMPP for linux rather than using my existing versions
> of mysql, php and apache.
>
> 2. Uninstalled Postfix and reinstalled Sendmail. Then I followed the
> instructions here:
>
> http://dbaron.org/linux/sendmail
>
> I can't vouch that the method described at that link is completely
> safe and secure, but it worked for me and was very easy. I've spent
> many hours and days trying to get this to work so am very relieved.
>
> My only complaint is that there is quite a long delay after submitting
> report.html (from Ch. 1) while it says 'waiting for localhost...'. It
> can take up to 20 seconds or so before sending and giving
> confirmation.
>
> Thanks for all your help.
>
> On Mon, Oct 26, 2009 at 4:37 AM, Bob McConnell <rvm@...> wrote:
>> From: James Prentice
>>
>>> I have tried setting both $to and $email to be the same shaw address
>>> since I assumed it should be recognized by the mail server, but it's
>>> still getting bounced. So why is 'www-data@homemade' being listed as
>>> the sender? Any ideas?
>>
>> I strongly recommend you call the help desk at Shaw and ask them to
>> explain what is happening. They should know what is going on with their
>> servers. Everyone on this list appears to be guessing at the problem,
>> which is not likely to help you.
>>
>> Bob McConnell
>>
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: processing html forms and keeping the values

2009-11-25T11:18:56Z

Merlin Morgenstern wrote on 2009-11-24 18:38:

> This is not so easy. I am doing some checking with php on the values and
> if one failes php returns via GET to the form with the help of header
> location:
>
> $parameter = "&demo=this";
> HEADER("Location:/test.html?error=1".$parameter);
> exit;
>
> I would need to change way to many things in order to simply change to
> post.
>
> Isn't there another way?

This is what I normally do with larger forms:

1. create the form as a function: form()
2. submit the form to the same page
3. test relevant input and if the fail print form()

Example:

function form() {
print '
<form action="'.$_SERVER['PHP_SELF'].'" method="post">
<input type="text" name="email" value="'.$_POST['email'].'">
<input type="submit" name="submit" value="send form">
</form>';
}

if($_POST['submit']) {
// test email is entered
if(!$_POST['email']) {
print "error: you must enter an e-mail address";
form();
}
else {
// do stuff from here...
}
}
else
form();

With a 50 field form this is a nice approach for me :-)

--
Kind regards
Kim Emax - masterminds.dk

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php