From Kbedi at inta.org Mon Mar 1 13:50:55 2004 From: Kbedi at inta.org (Kshitij Bedi) Date: Mon, 1 Mar 2004 13:50:55 -0500 Subject: [nycphp-talk] MYSQL Stop automatically Message-ID: I just made a new MySQL installation on a windows 2000 server machine and it keeps stopping by itself after I start it. Any ideas whats going wrong? From dcech at phpwerx.net Mon Mar 1 13:53:20 2004 From: dcech at phpwerx.net (Dan Cech) Date: Mon, 01 Mar 2004 13:53:20 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: References: Message-ID: <404386A0.6080705@phpwerx.net> Kshitij Bedi wrote: > I just made a new MySQL installation on a windows 2000 server machine and it > keeps stopping by itself after I start it. Any ideas whats going wrong? Check out your error logs, they are mysql.err and .err in the data directory of your MySQL installation. Dan From tgales at tgaconnect.com Mon Mar 1 13:53:21 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 13:53:21 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: Message-ID: <003f01c3ffbe$78d10820$e98d3818@oberon1> Kshitij Bedi writes: > I just made a new MySQL installation on a windows 2000 server > machine and it keeps stopping by itself after I start it. Any > ideas whats going wrong? You should first check your error log You get there by going to the control panel and click administrative tasks and the event viewer T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From tgales at tgaconnect.com Mon Mar 1 13:59:23 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 13:59:23 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: <003f01c3ffbe$78d10820$e98d3818@oberon1> Message-ID: <004001c3ffbf$504261f0$e98d3818@oberon1> Um -- the real name of the logs I was referring to are: Application Security System these are the operating system error logs not to be confused with the MySQL error log T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From Kbedi at inta.org Mon Mar 1 14:03:40 2004 From: Kbedi at inta.org (Kshitij Bedi) Date: Mon, 1 Mar 2004 14:03:40 -0500 Subject: [nycphp-talk] MYSQL Stop automatically Message-ID: It just says that the service terminated unexpectedly eventId: 7031 -----Original Message----- From: Tim Gales [mailto:tgales at tgaconnect.com] Sent: Monday, March 01, 2004 1:59 PM To: 'NYPHP Talk' Subject: RE: [nycphp-talk] MYSQL Stop automatically Um -- the real name of the logs I was referring to are: Application Security System these are the operating system error logs not to be confused with the MySQL error log T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From tgales at tgaconnect.com Mon Mar 1 14:09:11 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 14:09:11 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: Message-ID: <004101c3ffc0$ae5cb1e0$e98d3818@oberon1> > eventId: 7031 I think you should search the MSDN website for that error number Hopefully it will give you a line on what's happening by telling you the sorts of things that can cause it. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From dcech at phpwerx.net Mon Mar 1 14:11:56 2004 From: dcech at phpwerx.net (Dan Cech) Date: Mon, 01 Mar 2004 14:11:56 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: References: Message-ID: <40438AFC.7010905@phpwerx.net> Kshitij Bedi wrote: > It just says that the service terminated unexpectedly > eventId: 7031 You might find something more enlightening in the MySQL logs. Dan > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Monday, March 01, 2004 1:59 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] MYSQL Stop automatically > > Um -- the real name of the > logs I was referring to are: > > Application > Security > System > > these are the operating system > error logs not to be > confused with the MySQL error log > > T. Gales & Associates From Kbedi at inta.org Mon Mar 1 14:22:45 2004 From: Kbedi at inta.org (Kshitij Bedi) Date: Mon, 1 Mar 2004 14:22:45 -0500 Subject: [nycphp-talk] MYSQL Stop automatically Message-ID: Is it necessary to install MySQL using the administrator account? -----Original Message----- From: Dan Cech [mailto:dcech at phpwerx.net] Sent: Monday, March 01, 2004 2:12 PM To: NYPHP Talk Subject: Re: [nycphp-talk] MYSQL Stop automatically Kshitij Bedi wrote: > It just says that the service terminated unexpectedly > eventId: 7031 You might find something more enlightening in the MySQL logs. Dan > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Monday, March 01, 2004 1:59 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] MYSQL Stop automatically > > Um -- the real name of the > logs I was referring to are: > > Application > Security > System > > these are the operating system > error logs not to be > confused with the MySQL error log > > T. Gales & Associates _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From tgales at tgaconnect.com Mon Mar 1 14:27:41 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 14:27:41 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: Message-ID: <004201c3ffc3$4439a540$e98d3818@oberon1> > Is it necessary to install MySQL using the administrator account? It is necessary that the MySQL process have the correct privileges for the directory(s) will be reading and writing to. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From Rafi.Sheikh at Ingenix.com Mon Mar 1 16:34:43 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Mon, 1 Mar 2004 15:34:43 -0600 Subject: [nycphp-talk] gd not compiling/showing via php_info() Message-ID: BASICS: Apache 1.3.29, php 4.3.4, MySQL 1.3 on win2k-pro. Skill Level: Graduated to rookie from novice I am trying to use jpgrap with php. For that I need gd enabled. Following is from my php.ini (in \winnt\system32 dir.) as you can see, it is listed and uncommented. However, I do not see gd related info when I run php_info() ; Directory in which the loadable extensions (modules) reside. extension_dir = "c:\php\extensions" extension=php_gd2.dll What am I missing? Your time and advice is deeply appreciated. ----------------------------------------------------- Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From tgales at tgaconnect.com Mon Mar 1 16:44:20 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 16:44:20 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: Message-ID: <004a01c3ffd6$5b41a9a0$e98d3818@oberon1> Rafi Sheikh writes: > I am trying to use jpgrap with php. For that I need gd > enabled. Following is from my php.ini (in \winnt\system32 > dir.) as you can see, it is listed and uncommented. However, > I do not see gd related info when I run > php_info() > > ; Directory in which the loadable extensions (modules) > reside. extension_dir = "c:\php\extensions" extension=php_gd2.dll > > What am I missing? Did you check you phpinfo results to make certain you are reading the correct php.ini file? T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From danielc at analysisandsolutions.com Mon Mar 1 16:49:58 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 1 Mar 2004 16:49:58 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: References: Message-ID: <20040301214958.GA12967@panix.com> Hi Rafi: On Mon, Mar 01, 2004 at 03:34:43PM -0600, Rafi Sheikh wrote: > > I am trying to use jpgrap with php. For that I need gd enabled. Following > is from my php.ini (in \winnt\system32 dir.) as you can see, it is listed > and uncommented. However, I do not see gd related info when I run > php_info() > > ; Directory in which the loadable extensions (modules) reside. > extension_dir = "c:\php\extensions" > extension=php_gd2.dll Naturally you checked c:\php\extensions that the php_gd2.dll file was there and the web server has permissions to read it. But, I don't really think this is the problem because you'd be seeing error messages saying that the file/functions/etc could not be found. What does the "Configuration File (php.ini) Path" in the phpinfo output say? Does it match the php.ini file you just edited? Anyway, I'd advise keeping the php.ini file in the php directory itself rather than in the system32 dir. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From Rafi.Sheikh at Ingenix.com Mon Mar 1 17:20:35 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Mon, 1 Mar 2004 16:20:35 -0600 Subject: [nycphp-talk] gd not compiling/showing via php_info() Message-ID: Following is from php_info(): Virtual Directory Support: enabled Configuration File (php.ini) Path at C:\WINNT This is where I placed the php.ini. Someone said to copy all .dll and files under extensions to c:\winnt\sys32 also, which I did. Was that an idiotic move? (Ok, you really do not have to answer that!) Once again, your patience (as I am a confirmed rookie) and advice is deeply appreciated! (Thank you Dan and T. Gales) ----------------------------------------------------- Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From tgales at tgaconnect.com Mon Mar 1 17:37:49 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 17:37:49 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: Message-ID: <004b01c3ffdd$d3f83420$e98d3818@oberon1> Rafi Sheikh writes: " Following is from php_info(): Virtual Directory Support: enabled Configuration File (php.ini) Path at C:\WINNT" earlier you wrote: "Following is from my php.ini (in \winnt\system32 dir.)" Daniel C. advised you: "Anyway, I'd advise keeping the php.ini file in the php directory itself rather than in the system32 dir." Find the diretory where the php.exe file is (most likely its C:\php) and move the php.ini (which you edited) from \winnt\system32 to there. Give it another shot. Good luck... T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From danielc at analysisandsolutions.com Mon Mar 1 17:37:12 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 1 Mar 2004 17:37:12 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: References: Message-ID: <20040301223711.GA20104@panix.com> On Mon, Mar 01, 2004 at 04:20:35PM -0600, Rafi Sheikh wrote: > Configuration File (php.ini) Path at C:\WINNT > This is where I placed the php.ini And what happens if you change some other setting in the ini file? Do the changes get reflected in the phpinfo output? For exmaple, change display_errors and see what happens. > Someone said to copy all .dll and files > under extensions to c:\winnt\sys32 also, which I did. Was that an idiotic > move? Well, that's the "official" way to do it, but I think that it's idiotic. Just put the PHP directory and the php\dll directory in the system's PATH and you're good to go! --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From erank at isthmus.com Mon Mar 1 17:48:56 2004 From: erank at isthmus.com (Eric Rank) Date: Mon, 1 Mar 2004 16:48:56 -0600 Subject: [nycphp-talk] MVC Framework opinions References: <20040301214958.GA12967@panix.com> Message-ID: <001b01c3ffdf$60fe1500$8b01a8c0@DB> I'm looking into using an Model View Controller framework to use as a base to launch from in developing future projects in an efficient manner, and I'd like some feedback from anyone who's used one. So I guess this question splits into 2 threads. First, what are the pro's and cons to using an established MVC framework in general, as opposed to using other strategies to split up logic from presentation? Smarty templates anyone? Second, what frameworks have you used that you like / dislike? I'm currently looking into Seagull, after having played with rolling my own for a bit. Fusebox makes me itchy after briefly looking at the demos and files (the potentially huge 'controller', and as irrational as it is, the heavy reliance on passing 'action' variables in the url). I'm mostly looking for speed, ease of development and deployment, and security. Thoughts? Eric Rank From ashaw at iifwp.org Mon Mar 1 18:05:44 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Mon, 1 Mar 2004 18:05:44 -0500 Subject: [nycphp-talk] MVC Framework opinions References: <20040301214958.GA12967@panix.com> <001b01c3ffdf$60fe1500$8b01a8c0@DB> Message-ID: <00dc01c3ffe1$ba13cc50$6e01a8c0@iifwp.local> I'm using Smarty templates now for "my first big project," which is an database that was basically ported to php/mysql from ms access. We extend Smarty with a custom class that runs a few extra things (checks permissions for different templates and different data processing actions based on login, etc.) and then uses Smarty to parse the templates. It's great and very flexible and allows my brain to keep thinking in terms of "data entry form, module, etc." as I did with MS Access. However I feel I honestly have not been able to do as good a job with "splitting up logic from presentation" as I'd like to. It's a judgement call and a thread that comes up here and there on the Smarty forums: how much do you have to / want to keep them separated? Since I'm the only developer on this team, I have, of course, both a lot of flexibility and a lot of chances to write lazy code. All in all, though, Smarty and our little extension of it, are serving me well, and I think I probably am limited more by my own lack of programming experience/discipline than by the framework itself. - Allen > First, what are the pro's and cons to using an established MVC framework in > general, as opposed to using other strategies to split up logic from > presentation? Smarty templates anyone? -- =========================================================== Allen Shaw ashaw at iifwp.org IIFWP Data and 914.631.1331 x.106 IT Services http://www.iifwp.org From Rafi.Sheikh at Ingenix.com Mon Mar 1 18:28:58 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Mon, 1 Mar 2004 17:28:58 -0600 Subject: [nycphp-talk] RE: talk Digest, Vol 10, Issue 1 Message-ID: I have done the following: 1. Moved php.ini from C:\WINNT\system32 to C:\php (this is where php.exe is and other directories for php) 2. modified extension_dir=C:\php in php.ini 3. stopped and restarted apache, and pointed to php_info() 4. Verified that there is no php.ini in the C:\WINNT\system32 CURIOUS: The following still show and I have tried to find where and why it is pointing to these directories to no avail (sigh) Following is after the changes as above were made: Configuration File (php.ini) Path C:\WINNT <<< I moved it here c:\php\php.ini include_path .;c:\php4\pear .;c:\php4\pear << Subject: [nycphp-talk] MYSQL Stop automatically To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" I just made a new MySQL installation on a windows 2000 server machine and it keeps stopping by itself after I start it. Any ideas whats going wrong? ------------------------------ Message: 2 Date: Mon, 01 Mar 2004 13:53:20 -0500 From: Dan Cech Subject: Re: [nycphp-talk] MYSQL Stop automatically To: NYPHP Talk Message-ID: <404386A0.6080705 at phpwerx.net> Content-Type: text/plain; charset=us-ascii; format=flowed Kshitij Bedi wrote: > I just made a new MySQL installation on a windows 2000 server machine and it > keeps stopping by itself after I start it. Any ideas whats going wrong? Check out your error logs, they are mysql.err and .err in the data directory of your MySQL installation. Dan ------------------------------ Message: 3 Date: Mon, 1 Mar 2004 13:53:21 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <003f01c3ffbe$78d10820$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Kshitij Bedi writes: > I just made a new MySQL installation on a windows 2000 server > machine and it keeps stopping by itself after I start it. Any > ideas whats going wrong? You should first check your error log You get there by going to the control panel and click administrative tasks and the event viewer T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 4 Date: Mon, 1 Mar 2004 13:59:23 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <004001c3ffbf$504261f0$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Um -- the real name of the logs I was referring to are: Application Security System these are the operating system error logs not to be confused with the MySQL error log T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 5 Date: Mon, 1 Mar 2004 14:03:40 -0500 From: Kshitij Bedi Subject: RE: [nycphp-talk] MYSQL Stop automatically To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" It just says that the service terminated unexpectedly eventId: 7031 -----Original Message----- From: Tim Gales [mailto:tgales at tgaconnect.com] Sent: Monday, March 01, 2004 1:59 PM To: 'NYPHP Talk' Subject: RE: [nycphp-talk] MYSQL Stop automatically Um -- the real name of the logs I was referring to are: Application Security System these are the operating system error logs not to be confused with the MySQL error log T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 6 Date: Mon, 1 Mar 2004 14:09:11 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <004101c3ffc0$ae5cb1e0$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" > eventId: 7031 I think you should search the MSDN website for that error number Hopefully it will give you a line on what's happening by telling you the sorts of things that can cause it. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 7 Date: Mon, 01 Mar 2004 14:11:56 -0500 From: Dan Cech Subject: Re: [nycphp-talk] MYSQL Stop automatically To: NYPHP Talk Message-ID: <40438AFC.7010905 at phpwerx.net> Content-Type: text/plain; charset=us-ascii; format=flowed Kshitij Bedi wrote: > It just says that the service terminated unexpectedly > eventId: 7031 You might find something more enlightening in the MySQL logs. Dan > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Monday, March 01, 2004 1:59 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] MYSQL Stop automatically > > Um -- the real name of the > logs I was referring to are: > > Application > Security > System > > these are the operating system > error logs not to be > confused with the MySQL error log > > T. Gales & Associates ------------------------------ Message: 8 Date: Mon, 1 Mar 2004 14:22:45 -0500 From: Kshitij Bedi Subject: RE: [nycphp-talk] MYSQL Stop automatically To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" Is it necessary to install MySQL using the administrator account? -----Original Message----- From: Dan Cech [mailto:dcech at phpwerx.net] Sent: Monday, March 01, 2004 2:12 PM To: NYPHP Talk Subject: Re: [nycphp-talk] MYSQL Stop automatically Kshitij Bedi wrote: > It just says that the service terminated unexpectedly > eventId: 7031 You might find something more enlightening in the MySQL logs. Dan > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Monday, March 01, 2004 1:59 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] MYSQL Stop automatically > > Um -- the real name of the > logs I was referring to are: > > Application > Security > System > > these are the operating system > error logs not to be > confused with the MySQL error log > > T. Gales & Associates _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 9 Date: Mon, 1 Mar 2004 14:27:41 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <004201c3ffc3$4439a540$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" > Is it necessary to install MySQL using the administrator account? It is necessary that the MySQL process have the correct privileges for the directory(s) will be reading and writing to. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 10 Date: Mon, 1 Mar 2004 15:34:43 -0600 From: Rafi Sheikh Subject: [nycphp-talk] gd not compiling/showing via php_info() To: "'talk at lists.nyphp.org'" Message-ID: Content-Type: text/plain; charset="iso-8859-1" BASICS: Apache 1.3.29, php 4.3.4, MySQL 1.3 on win2k-pro. Skill Level: Graduated to rookie from novice I am trying to use jpgrap with php. For that I need gd enabled. Following is from my php.ini (in \winnt\system32 dir.) as you can see, it is listed and uncommented. However, I do not see gd related info when I run php_info() ; Directory in which the loadable extensions (modules) reside. extension_dir = "c:\php\extensions" extension=php_gd2.dll What am I missing? Your time and advice is deeply appreciated. ----------------------------------------------------- Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. ------------------------------ Message: 11 Date: Mon, 1 Mar 2004 16:44:20 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] gd not compiling/showing via php_info() To: "'NYPHP Talk'" Message-ID: <004a01c3ffd6$5b41a9a0$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Rafi Sheikh writes: > I am trying to use jpgrap with php. For that I need gd > enabled. Following is from my php.ini (in \winnt\system32 > dir.) as you can see, it is listed and uncommented. However, > I do not see gd related info when I run > php_info() > > ; Directory in which the loadable extensions (modules) > reside. extension_dir = "c:\php\extensions" extension=php_gd2.dll > > What am I missing? Did you check you phpinfo results to make certain you are reading the correct php.ini file? T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 12 Date: Mon, 1 Mar 2004 16:49:58 -0500 From: Daniel Convissor Subject: Re: [nycphp-talk] gd not compiling/showing via php_info() To: NYPHP Talk Message-ID: <20040301214958.GA12967 at panix.com> Content-Type: text/plain; charset=us-ascii Hi Rafi: On Mon, Mar 01, 2004 at 03:34:43PM -0600, Rafi Sheikh wrote: > > I am trying to use jpgrap with php. For that I need gd enabled. Following > is from my php.ini (in \winnt\system32 dir.) as you can see, it is listed > and uncommented. However, I do not see gd related info when I run > php_info() > > ; Directory in which the loadable extensions (modules) reside. > extension_dir = "c:\php\extensions" > extension=php_gd2.dll Naturally you checked c:\php\extensions that the php_gd2.dll file was there and the web server has permissions to read it. But, I don't really think this is the problem because you'd be seeing error messages saying that the file/functions/etc could not be found. What does the "Configuration File (php.ini) Path" in the phpinfo output say? Does it match the php.ini file you just edited? Anyway, I'd advise keeping the php.ini file in the php directory itself rather than in the system32 dir. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 13 Date: Mon, 1 Mar 2004 16:20:35 -0600 From: Rafi Sheikh Subject: [nycphp-talk] gd not compiling/showing via php_info() To: "'talk at lists.nyphp.org'" Message-ID: Content-Type: text/plain; charset="iso-8859-1" Following is from php_info(): Virtual Directory Support: enabled Configuration File (php.ini) Path at C:\WINNT This is where I placed the php.ini. Someone said to copy all .dll and files under extensions to c:\winnt\sys32 also, which I did. Was that an idiotic move? (Ok, you really do not have to answer that!) Once again, your patience (as I am a confirmed rookie) and advice is deeply appreciated! (Thank you Dan and T. Gales) ----------------------------------------------------- Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. ------------------------------ Message: 14 Date: Mon, 1 Mar 2004 17:37:49 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] gd not compiling/showing via php_info() To: "'NYPHP Talk'" Message-ID: <004b01c3ffdd$d3f83420$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Rafi Sheikh writes: " Following is from php_info(): Virtual Directory Support: enabled Configuration File (php.ini) Path at C:\WINNT" earlier you wrote: "Following is from my php.ini (in \winnt\system32 dir.)" Daniel C. advised you: "Anyway, I'd advise keeping the php.ini file in the php directory itself rather than in the system32 dir." Find the diretory where the php.exe file is (most likely its C:\php) and move the php.ini (which you edited) from \winnt\system32 to there. Give it another shot. Good luck... T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk End of talk Digest, Vol 10, Issue 1 *********************************** This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From chubbard at next-online.net Mon Mar 1 18:30:09 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Mon, 01 Mar 2004 15:30:09 -0800 Subject: [nycphp-talk] MVC Framework opinions In-Reply-To: <00dc01c3ffe1$ba13cc50$6e01a8c0@iifwp.local> References: <20040301214958.GA12967@panix.com> <001b01c3ffdf$60fe1500$8b01a8c0@DB> <00dc01c3ffe1$ba13cc50$6e01a8c0@iifwp.local> Message-ID: <4043C781.5060303@next-online.net> I've used a couple different implementations of MVC. You have to define what you mean by MVC as it looks to me as if almost everyone implementing MVC pushes the definition(s) in new and interesting way. I've seen MVC implemented different ways. For example I've seen: where you've got a php page which is just a hollow shell that includes the worker file; index.php and indexWorker.php, listing.php and listingWorker.php, etc. where you've got a single php page which based on the use of the site loads/includes different worker files: index.php and Worker.php, Listing.php, etc. where you've got a single php page, a logic page and a template: index.php and indexWorder.php and index.tpl Then I've seen it taken to extremes, where every field in a table has four different controllers, add, edit, delete and view. So to do a query you'd do something like $a = getTableField('tablename', 'fieldname'); , and getTableField would connect to the database an query the database for that specific piece of data. Personally I think this is silly. Makes maintain the code brutally difficult. I'd rather write SQL. Mind you I know how to write SQL. For me the answer is to not use a formal framework design. Pick a design that works for your level of competency and the particulars of the application. If a version of MVC makes it easier for you to abstract the logic of the application then use MVC. If you are abstracting the logic of the application you may find that there is another logical framework design/topology that works better. Make your code easy to maintain. MVC may or may not make your code easier to maintain. As far as I can tell there's nothing inherent in MVC that would make code easier to maintain. It's just as easy to write bad code with MVC as it is without MVC. Hope this is helpful. Chris Allen Shaw wrote: >I'm using Smarty templates now for "my first big project," which is an >database that was basically ported to php/mysql from ms access. We extend >Smarty with a custom class that runs a few extra things (checks permissions >for different templates and different data processing actions based on >login, etc.) and then uses Smarty to parse the templates. It's great and >very flexible and allows my brain to keep thinking in terms of "data entry >form, module, etc." as I did with MS Access. > >However I feel I honestly have not been able to do as good a job with >"splitting up logic from presentation" as I'd like to. It's a judgement >call and a thread that comes up here and there on the Smarty forums: how >much do you have to / want to keep them separated? Since I'm the only >developer on this team, I have, of course, both a lot of flexibility and a >lot of chances to write lazy code. > >All in all, though, Smarty and our little extension of it, are serving me >well, and I think I probably am limited more by my own lack of programming >experience/discipline than by the framework itself. > >- Allen > > > >>First, what are the pro's and cons to using an established MVC framework >> >> >in > > >>general, as opposed to using other strategies to split up logic from >>presentation? Smarty templates anyone? >> >> > >-- >=========================================================== >Allen Shaw ashaw at iifwp.org >IIFWP Data and 914.631.1331 x.106 > IT Services http://www.iifwp.org > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > > -- Chris Hubbard Sr Software Developer Next Online 425 563 4153 From tgales at tgaconnect.com Mon Mar 1 18:37:45 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 18:37:45 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: Message-ID: <004e01c3ffe6$34e61240$e98d3818@oberon1> Rafi Sheikh writes: "2. modified extension_dir=C:\php" Put that back the way it was (was it: extension_dir = "c:\php\extensions"?) and try again Hang in there, T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From tgales at tgaconnect.com Mon Mar 1 18:49:29 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Mon, 1 Mar 2004 18:49:29 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: <004e01c3ffe6$34e61240$e98d3818@oberon1> Message-ID: <004f01c3ffe7$d6b302d0$e98d3818@oberon1> additionally c:\php and c:\php\extensions should be in the Windows system path Search for any other copies of a php.exe in directories other that c:\php If you find any rename them 'bad_php.exe' as a temporary measure. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From Rafi.Sheikh at Ingenix.com Mon Mar 1 18:54:52 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Mon, 1 Mar 2004 17:54:52 -0600 Subject: [nycphp-talk] gd not compiling/showing via php_info( Message-ID: I have done the following: 1. Moved php.ini from C:\WINNT\system32 to C:\php (this is where php.exe is and other directories for php) 2. modified extension_dir=C:\php in php.ini 3. stopped and restarted apache, and pointed to php_info() 4. Verified that there is no php.ini in the C:\WINNT\system32 CURIOUS: The following still show and I have tried to find where and why it is pointing to these directories to no avail (sigh) Following is after the changes as above were made: Configuration File (php.ini) Path C:\WINNT <<< I moved it here c:\php\php.ini include_path .;c:\php4\pear .;c:\php4\pear << Subject: Re: [nycphp-talk] gd not compiling/showing via php_info() To: NYPHP Talk Message-ID: <20040301223711.GA20104 at panix.com> Content-Type: text/plain; charset=us-ascii On Mon, Mar 01, 2004 at 04:20:35PM -0600, Rafi Sheikh wrote: > Configuration File (php.ini) Path at C:\WINNT > This is where I placed the php.ini And what happens if you change some other setting in the ini file? Do the changes get reflected in the phpinfo output? For exmaple, change display_errors and see what happens. > Someone said to copy all .dll and files > under extensions to c:\winnt\sys32 also, which I did. Was that an idiotic > move? Well, that's the "official" way to do it, but I think that it's idiotic. Just put the PHP directory and the php\dll directory in the system's PATH and you're good to go! --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 2 Date: Mon, 1 Mar 2004 16:48:56 -0600 From: "Eric Rank" Subject: [nycphp-talk] MVC Framework opinions To: "NYPHP Talk" Message-ID: <001b01c3ffdf$60fe1500$8b01a8c0 at DB> Content-Type: text/plain; charset="iso-8859-1" I'm looking into using an Model View Controller framework to use as a base to launch from in developing future projects in an efficient manner, and I'd like some feedback from anyone who's used one. So I guess this question splits into 2 threads. First, what are the pro's and cons to using an established MVC framework in general, as opposed to using other strategies to split up logic from presentation? Smarty templates anyone? Second, what frameworks have you used that you like / dislike? I'm currently looking into Seagull, after having played with rolling my own for a bit. Fusebox makes me itchy after briefly looking at the demos and files (the potentially huge 'controller', and as irrational as it is, the heavy reliance on passing 'action' variables in the url). I'm mostly looking for speed, ease of development and deployment, and security. Thoughts? Eric Rank ------------------------------ Message: 3 Date: Mon, 1 Mar 2004 18:05:44 -0500 From: "Allen Shaw" Subject: Re: [nycphp-talk] MVC Framework opinions To: "NYPHP Talk" Message-ID: <00dc01c3ffe1$ba13cc50$6e01a8c0 at iifwp.local> Content-Type: text/plain; charset="iso-8859-1" I'm using Smarty templates now for "my first big project," which is an database that was basically ported to php/mysql from ms access. We extend Smarty with a custom class that runs a few extra things (checks permissions for different templates and different data processing actions based on login, etc.) and then uses Smarty to parse the templates. It's great and very flexible and allows my brain to keep thinking in terms of "data entry form, module, etc." as I did with MS Access. However I feel I honestly have not been able to do as good a job with "splitting up logic from presentation" as I'd like to. It's a judgement call and a thread that comes up here and there on the Smarty forums: how much do you have to / want to keep them separated? Since I'm the only developer on this team, I have, of course, both a lot of flexibility and a lot of chances to write lazy code. All in all, though, Smarty and our little extension of it, are serving me well, and I think I probably am limited more by my own lack of programming experience/discipline than by the framework itself. - Allen > First, what are the pro's and cons to using an established MVC framework in > general, as opposed to using other strategies to split up logic from > presentation? Smarty templates anyone? -- =========================================================== Allen Shaw ashaw at iifwp.org IIFWP Data and 914.631.1331 x.106 IT Services http://www.iifwp.org ------------------------------ Message: 4 Date: Mon, 1 Mar 2004 17:28:58 -0600 From: Rafi Sheikh Subject: [nycphp-talk] RE: talk Digest, Vol 10, Issue 1 To: "'talk at lists.nyphp.org'" Message-ID: Content-Type: text/plain; charset="iso-8859-1" I have done the following: 1. Moved php.ini from C:\WINNT\system32 to C:\php (this is where php.exe is and other directories for php) 2. modified extension_dir=C:\php in php.ini 3. stopped and restarted apache, and pointed to php_info() 4. Verified that there is no php.ini in the C:\WINNT\system32 CURIOUS: The following still show and I have tried to find where and why it is pointing to these directories to no avail (sigh) Following is after the changes as above were made: Configuration File (php.ini) Path C:\WINNT <<< I moved it here c:\php\php.ini include_path .;c:\php4\pear .;c:\php4\pear << Subject: [nycphp-talk] MYSQL Stop automatically To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" I just made a new MySQL installation on a windows 2000 server machine and it keeps stopping by itself after I start it. Any ideas whats going wrong? ------------------------------ Message: 2 Date: Mon, 01 Mar 2004 13:53:20 -0500 From: Dan Cech Subject: Re: [nycphp-talk] MYSQL Stop automatically To: NYPHP Talk Message-ID: <404386A0.6080705 at phpwerx.net> Content-Type: text/plain; charset=us-ascii; format=flowed Kshitij Bedi wrote: > I just made a new MySQL installation on a windows 2000 server machine and it > keeps stopping by itself after I start it. Any ideas whats going wrong? Check out your error logs, they are mysql.err and .err in the data directory of your MySQL installation. Dan ------------------------------ Message: 3 Date: Mon, 1 Mar 2004 13:53:21 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <003f01c3ffbe$78d10820$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Kshitij Bedi writes: > I just made a new MySQL installation on a windows 2000 server > machine and it keeps stopping by itself after I start it. Any > ideas whats going wrong? You should first check your error log You get there by going to the control panel and click administrative tasks and the event viewer T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 4 Date: Mon, 1 Mar 2004 13:59:23 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <004001c3ffbf$504261f0$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Um -- the real name of the logs I was referring to are: Application Security System these are the operating system error logs not to be confused with the MySQL error log T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 5 Date: Mon, 1 Mar 2004 14:03:40 -0500 From: Kshitij Bedi Subject: RE: [nycphp-talk] MYSQL Stop automatically To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" It just says that the service terminated unexpectedly eventId: 7031 -----Original Message----- From: Tim Gales [mailto:tgales at tgaconnect.com] Sent: Monday, March 01, 2004 1:59 PM To: 'NYPHP Talk' Subject: RE: [nycphp-talk] MYSQL Stop automatically Um -- the real name of the logs I was referring to are: Application Security System these are the operating system error logs not to be confused with the MySQL error log T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 6 Date: Mon, 1 Mar 2004 14:09:11 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <004101c3ffc0$ae5cb1e0$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" > eventId: 7031 I think you should search the MSDN website for that error number Hopefully it will give you a line on what's happening by telling you the sorts of things that can cause it. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 7 Date: Mon, 01 Mar 2004 14:11:56 -0500 From: Dan Cech Subject: Re: [nycphp-talk] MYSQL Stop automatically To: NYPHP Talk Message-ID: <40438AFC.7010905 at phpwerx.net> Content-Type: text/plain; charset=us-ascii; format=flowed Kshitij Bedi wrote: > It just says that the service terminated unexpectedly > eventId: 7031 You might find something more enlightening in the MySQL logs. Dan > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Monday, March 01, 2004 1:59 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] MYSQL Stop automatically > > Um -- the real name of the > logs I was referring to are: > > Application > Security > System > > these are the operating system > error logs not to be > confused with the MySQL error log > > T. Gales & Associates ------------------------------ Message: 8 Date: Mon, 1 Mar 2004 14:22:45 -0500 From: Kshitij Bedi Subject: RE: [nycphp-talk] MYSQL Stop automatically To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" Is it necessary to install MySQL using the administrator account? -----Original Message----- From: Dan Cech [mailto:dcech at phpwerx.net] Sent: Monday, March 01, 2004 2:12 PM To: NYPHP Talk Subject: Re: [nycphp-talk] MYSQL Stop automatically Kshitij Bedi wrote: > It just says that the service terminated unexpectedly > eventId: 7031 You might find something more enlightening in the MySQL logs. Dan > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Monday, March 01, 2004 1:59 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] MYSQL Stop automatically > > Um -- the real name of the > logs I was referring to are: > > Application > Security > System > > these are the operating system > error logs not to be > confused with the MySQL error log > > T. Gales & Associates _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 9 Date: Mon, 1 Mar 2004 14:27:41 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] MYSQL Stop automatically To: "'NYPHP Talk'" Message-ID: <004201c3ffc3$4439a540$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" > Is it necessary to install MySQL using the administrator account? It is necessary that the MySQL process have the correct privileges for the directory(s) will be reading and writing to. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 10 Date: Mon, 1 Mar 2004 15:34:43 -0600 From: Rafi Sheikh Subject: [nycphp-talk] gd not compiling/showing via php_info() To: "'talk at lists.nyphp.org'" Message-ID: Content-Type: text/plain; charset="iso-8859-1" BASICS: Apache 1.3.29, php 4.3.4, MySQL 1.3 on win2k-pro. Skill Level: Graduated to rookie from novice I am trying to use jpgrap with php. For that I need gd enabled. Following is from my php.ini (in \winnt\system32 dir.) as you can see, it is listed and uncommented. However, I do not see gd related info when I run php_info() ; Directory in which the loadable extensions (modules) reside. extension_dir = "c:\php\extensions" extension=php_gd2.dll What am I missing? Your time and advice is deeply appreciated. ----------------------------------------------------- Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. ------------------------------ Message: 11 Date: Mon, 1 Mar 2004 16:44:20 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] gd not compiling/showing via php_info() To: "'NYPHP Talk'" Message-ID: <004a01c3ffd6$5b41a9a0$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Rafi Sheikh writes: > I am trying to use jpgrap with php. For that I need gd > enabled. Following is from my php.ini (in \winnt\system32 > dir.) as you can see, it is listed and uncommented. However, > I do not see gd related info when I run > php_info() > > ; Directory in which the loadable extensions (modules) > reside. extension_dir = "c:\php\extensions" extension=php_gd2.dll > > What am I missing? Did you check you phpinfo results to make certain you are reading the correct php.ini file? T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ Message: 12 Date: Mon, 1 Mar 2004 16:49:58 -0500 From: Daniel Convissor Subject: Re: [nycphp-talk] gd not compiling/showing via php_info() To: NYPHP Talk Message-ID: <20040301214958.GA12967 at panix.com> Content-Type: text/plain; charset=us-ascii Hi Rafi: On Mon, Mar 01, 2004 at 03:34:43PM -0600, Rafi Sheikh wrote: > > I am trying to use jpgrap with php. For that I need gd enabled. Following > is from my php.ini (in \winnt\system32 dir.) as you can see, it is listed > and uncommented. However, I do not see gd related info when I run > php_info() > > ; Directory in which the loadable extensions (modules) reside. > extension_dir = "c:\php\extensions" > extension=php_gd2.dll Naturally you checked c:\php\extensions that the php_gd2.dll file was there and the web server has permissions to read it. But, I don't really think this is the problem because you'd be seeing error messages saying that the file/functions/etc could not be found. What does the "Configuration File (php.ini) Path" in the phpinfo output say? Does it match the php.ini file you just edited? Anyway, I'd advise keeping the php.ini file in the php directory itself rather than in the system32 dir. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 13 Date: Mon, 1 Mar 2004 16:20:35 -0600 From: Rafi Sheikh Subject: [nycphp-talk] gd not compiling/showing via php_info() To: "'talk at lists.nyphp.org'" Message-ID: Content-Type: text/plain; charset="iso-8859-1" Following is from php_info(): Virtual Directory Support: enabled Configuration File (php.ini) Path at C:\WINNT This is where I placed the php.ini. Someone said to copy all .dll and files under extensions to c:\winnt\sys32 also, which I did. Was that an idiotic move? (Ok, you really do not have to answer that!) Once again, your patience (as I am a confirmed rookie) and advice is deeply appreciated! (Thank you Dan and T. Gales) ----------------------------------------------------- Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. ------------------------------ Message: 14 Date: Mon, 1 Mar 2004 17:37:49 -0500 From: "Tim Gales" Subject: RE: [nycphp-talk] gd not compiling/showing via php_info() To: "'NYPHP Talk'" Message-ID: <004b01c3ffdd$d3f83420$e98d3818 at oberon1> Content-Type: text/plain; charset="US-ASCII" Rafi Sheikh writes: " Following is from php_info(): Virtual Directory Support: enabled Configuration File (php.ini) Path at C:\WINNT" earlier you wrote: "Following is from my php.ini (in \winnt\system32 dir.)" Daniel C. advised you: "Anyway, I'd advise keeping the php.ini file in the php directory itself rather than in the system32 dir." Find the diretory where the php.exe file is (most likely its C:\php) and move the php.ini (which you edited) from \winnt\system32 to there. Give it another shot. Good luck... T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com ------------------------------ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk End of talk Digest, Vol 10, Issue 1 *********************************** This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. ------------------------------ Message: 5 Date: Mon, 01 Mar 2004 15:30:09 -0800 From: Chris Hubbard Subject: Re: [nycphp-talk] MVC Framework opinions To: NYPHP Talk Message-ID: <4043C781.5060303 at next-online.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed I've used a couple different implementations of MVC. You have to define what you mean by MVC as it looks to me as if almost everyone implementing MVC pushes the definition(s) in new and interesting way. I've seen MVC implemented different ways. For example I've seen: where you've got a php page which is just a hollow shell that includes the worker file; index.php and indexWorker.php, listing.php and listingWorker.php, etc. where you've got a single php page which based on the use of the site loads/includes different worker files: index.php and Worker.php, Listing.php, etc. where you've got a single php page, a logic page and a template: index.php and indexWorder.php and index.tpl Then I've seen it taken to extremes, where every field in a table has four different controllers, add, edit, delete and view. So to do a query you'd do something like $a = getTableField('tablename', 'fieldname'); , and getTableField would connect to the database an query the database for that specific piece of data. Personally I think this is silly. Makes maintain the code brutally difficult. I'd rather write SQL. Mind you I know how to write SQL. For me the answer is to not use a formal framework design. Pick a design that works for your level of competency and the particulars of the application. If a version of MVC makes it easier for you to abstract the logic of the application then use MVC. If you are abstracting the logic of the application you may find that there is another logical framework design/topology that works better. Make your code easy to maintain. MVC may or may not make your code easier to maintain. As far as I can tell there's nothing inherent in MVC that would make code easier to maintain. It's just as easy to write bad code with MVC as it is without MVC. Hope this is helpful. Chris Allen Shaw wrote: >I'm using Smarty templates now for "my first big project," which is an >database that was basically ported to php/mysql from ms access. We extend >Smarty with a custom class that runs a few extra things (checks permissions >for different templates and different data processing actions based on >login, etc.) and then uses Smarty to parse the templates. It's great and >very flexible and allows my brain to keep thinking in terms of "data entry >form, module, etc." as I did with MS Access. > >However I feel I honestly have not been able to do as good a job with >"splitting up logic from presentation" as I'd like to. It's a judgement >call and a thread that comes up here and there on the Smarty forums: how >much do you have to / want to keep them separated? Since I'm the only >developer on this team, I have, of course, both a lot of flexibility and a >lot of chances to write lazy code. > >All in all, though, Smarty and our little extension of it, are serving me >well, and I think I probably am limited more by my own lack of programming >experience/discipline than by the framework itself. > >- Allen > > > >>First, what are the pro's and cons to using an established MVC framework >> >> >in > > >>general, as opposed to using other strategies to split up logic from >>presentation? Smarty templates anyone? >> >> > >-- >=========================================================== >Allen Shaw ashaw at iifwp.org >IIFWP Data and 914.631.1331 x.106 > IT Services http://www.iifwp.org > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > > -- Chris Hubbard Sr Software Developer Next Online 425 563 4153 ------------------------------ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk End of talk Digest, Vol 10, Issue 2 *********************************** This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From danielc at analysisandsolutions.com Mon Mar 1 19:32:18 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 1 Mar 2004 19:32:18 -0500 Subject: [nycphp-talk] gd not compiling/showing via php_info() In-Reply-To: <004f01c3ffe7$d6b302d0$e98d3818@oberon1> References: <004e01c3ffe6$34e61240$e98d3818@oberon1> <004f01c3ffe7$d6b302d0$e98d3818@oberon1> Message-ID: <20040302003217.GA9303@panix.com> On Mon, Mar 01, 2004 at 06:49:29PM -0500, Tim Gales wrote: > > c:\php and c:\php\extensions > should be in the Windows system path extensions doesn't need to be. c:\php\dlls does though. Oh, and make sure to restart your system after doing that. > Search for any other copies of a > php.exe in directories other that c:\php > If you find any rename them 'bad_php.exe' > as a temporary measure. Also, all those PHP dll files the install instructions told you to move to system32 should be moved back to the appropriate PHP directories. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From danielc at analysisandsolutions.com Mon Mar 1 19:47:01 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 1 Mar 2004 19:47:01 -0500 Subject: [nycphp-talk] RE: talk Digest, Vol 10, Issue 1 In-Reply-To: References: Message-ID: <20040302004701.GB9303@panix.com> Rafi: You're all mixed up. Start from a clean slate. Delete the entire contents of your c:\php directory all of your dll's. To make sure you get all the dll's out, do a file find on your entire c drive for "php*.dll" Download a "Win32 Package" "Stable (4.3.x-dev)" snapshot from http://snaps.php.net/ Unzip it into c:\php Move into that directory and copy php.ini-recommended to become php.ini Now, if you want to be forward thinking, to prepare yourself for a simple transition to PHP 5, rename php.exe to php-cgi.exe and copy c:\php\cli\php.exe to c:\php. Then adjust your Apache httpd.conf accordingly. Put c:\php and c:\php\dlls into your PATH environment variable. Restart. Now edit the php.ini file to be the way you want it, including setting the extensions path to c:\php\extensions and uncommenting the gd dll. Oh, and how come your message included the entire 500+ lines of the digest you were replying to? --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From jlacey at att.net Mon Mar 1 20:36:08 2004 From: jlacey at att.net (John Lacey) Date: Mon, 01 Mar 2004 18:36:08 -0700 Subject: [nycphp-talk] RE: talk Digest, Vol 10, Issue 1 In-Reply-To: <20040302004701.GB9303@panix.com> References: <20040302004701.GB9303@panix.com> Message-ID: <4043E508.1050808@att.net> Daniel Convissor wrote: > > Oh, and how come your message included the entire 500+ lines of the digest > you were replying to? because he took lessons from someone that you know and love? :) btw, how did that SQLite problem get resolved on your end? John From danielc at analysisandsolutions.com Mon Mar 1 21:48:53 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 1 Mar 2004 21:48:53 -0500 Subject: [nycphp-talk] sqlite "resolution" (was: Digest...) In-Reply-To: <4043E508.1050808@att.net> References: <20040302004701.GB9303@panix.com> <4043E508.1050808@att.net> Message-ID: <20040302024853.GA21062@panix.com> Hola: On Mon, Mar 01, 2004 at 06:36:08PM -0700, John Lacey wrote: > > btw, how did that SQLite problem get resolved on your end? Well, it's not solved, but as an interim measure to get it to work for now, I gave Apache the rights to create files in the winnt direcotry. Sub-optimal, that's for sure. Haven't had the time to discuss it with the developers. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From danielc at analysisandsolutions.com Tue Mar 2 09:53:17 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 2 Mar 2004 09:53:17 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #238 Message-ID: <20040302145317.GA5615@panix.com> A quick one... phpNewsManager Functions Script File Disclosure Vulnerabilit... http://www.securityfocus.com/bid/9720 XMB Forum Multiple Input Validation Vulnerabilities http://www.securityfocus.com/bid/9726 Opt-X header.php Remote File Include Vulnerability http://www.securityfocus.com/bid/9732 --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From danielc at analysisandsolutions.com Tue Mar 2 10:23:25 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 2 Mar 2004 10:23:25 -0500 Subject: [nycphp-talk] MYSQL Stop automatically In-Reply-To: References: Message-ID: <20040302152325.GA11615@panix.com> Hi: For simple step by step instructions on how to install MySQL on windows, check out my MySQL Basics page: http://www.analysisandsolutions.com/code/mybasic.htm --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From greg at click3x.com Tue Mar 2 10:49:16 2004 From: greg at click3x.com (Greg Faber) Date: Tue, 2 Mar 2004 10:49:16 -0500 Subject: [nycphp-talk] multiple file uploading Message-ID: <29360848-6C61-11D8-8AE6-000502F1DDFC@click3x.com> Good morning people, Just a quick question, for which I'd like a quick answer. When I wrote (uh... copy/pasted) my script to upload a file, I included the usual safeguards they mention in all the books: check to see if something is uploaded, verify file size != 0 and verify file type. Now, let's say I want to be able to upload 5 files at a time, must I verify every possible combination of uploaded/not-uploaded file or is there a function out there that was made specifically to handle this? (if there isn't I'll just bite the bullet and do it, I'm just thinking that this is so common someone MUSt have done it before, right?) IF I don't make sense, this is what I mean: < example with only 1 file upload at a time>: if ($_FILES['userfile']['tmp_name']=="") { echo "no file uploaded"; exit; } if ($_FILES['userfile']['size']=="0") { echo "file size is 0"; exit; } < example with only 2 files upload at a time>: if ($_FILES['userfile_1']['tmp_name']=="" && $_FILES['userfile_2']['tmp_name']=="") { echo "no file uploaded"; exit; } if ( ($_FILES['userfile_1']['size']=="0" && $_FILES['userfile_1']['tmp_name']!="" ) || ($_FILES['userfile_2']['size']=="0" && $_FILES['userfile_2']['tmp_name']!="" )) { echo "file size is 0"; exit; } If you have the possibility to upload 5 files at the same time, looks like things can get pretty hairy. Is it just stupid to allow users to upload multiple files at the same time? Just some quick thoughts please. Grazie, Greg From adam at trachtenberg.com Tue Mar 2 10:52:55 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 2 Mar 2004 10:52:55 -0500 (EST) Subject: [nycphp-talk] multiple file uploading In-Reply-To: <29360848-6C61-11D8-8AE6-000502F1DDFC@click3x.com> References: <29360848-6C61-11D8-8AE6-000502F1DDFC@click3x.com> Message-ID: On Tue, 2 Mar 2004, Greg Faber wrote: > < example with only 2 files upload at a time>: > if ($_FILES['userfile_1']['tmp_name']=="" && > $_FILES['userfile_2']['tmp_name']=="") { > echo "no file uploaded"; > exit; > } > if ( ($_FILES['userfile_1']['size']=="0" && > $_FILES['userfile_1']['tmp_name']!="" ) || > ($_FILES['userfile_2']['size']=="0" && > $_FILES['userfile_2']['tmp_name']!="" )) { > echo "file size is 0"; > exit; > } > > > If you have the possibility to upload 5 files at the same time, looks > like things can get pretty hairy. Is it just stupid to allow users to > upload multiple files at the same time? Just some quick thoughts > please. Try using a foreach loop over the $_FILES array: foreach($_FILES as $file) { if ($file['size'] == 0 || $file['tmp_name'] != "") { echo "file size is 0"; exit; } } -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From mitchy at spacemonkeylabs.com Tue Mar 2 11:22:37 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Tue, 02 Mar 2004 11:22:37 -0500 Subject: [nycphp-talk] multiple file uploading In-Reply-To: <29360848-6C61-11D8-8AE6-000502F1DDFC@click3x.com> References: <29360848-6C61-11D8-8AE6-000502F1DDFC@click3x.com> Message-ID: <4044B4CD.3070308@spacemonkeylabs.com> Greg Faber wrote: > Good morning people, > > Just a quick question, for which I'd like a quick answer. > > When I wrote (uh... copy/pasted) my script to upload a file, I included > the usual safeguards they mention in all the books: check to see if > something is uploaded, verify file size != 0 and verify file type. Now, > let's say I want to be able to upload 5 files at a time, must I verify > every possible combination of uploaded/not-uploaded file or is there a > function out there that was made specifically to handle this? (if there > isn't I'll just bite the bullet and do it, I'm just thinking that this > is so common someone MUSt have done it before, right?) I just dealt with this problem in the wee hours of last night - have a website that lets the client upload their entire database through one zipfile, as the six separate files were huge and it just seemed messy that way :) With PEAR's HTML_QuickForm, you could create the entire shebang with the following code (apologies if I am being too verbose): addElement('file', 'myfile1', 'Your datafile:'); $file =& $form->addElement('file', 'myfile2', 'Another datafile:'); $file =& $form->addElement('file', 'myfile3', 'And another:'); $file =& $form->addElement('file', 'myfile4', 'And another:'); $file =& $form->addElement('file', 'myfile5', 'And another:'); $form->addElement('submit', null, 'Send'); // this is the rule that makes them submit the file $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); // validate the form if ($form->validate()) { /* form was validated, you got your files and can manipulate them just like normally-submitted files */ print_r($_FILES['myfile1']; print_r($_FILES['myfile2']; print_r($_FILES['myfile3']; print_r($_FILES['myfile4']; print_r($_FILES['myfile5']; } else { // nothing submitted, give them the form $form->display(); } ?> The documentation for HTML_QuickForm is excellent, and inclues a QuickStart and an external link to a more detailed tutorial: http://pear.php.net/manual/en/package.html.html-quickform.php I'd also like to mention that I just finished a review of "PHP Anthology, Volume I, Foundations" by Harry Fuecks (SitePoint) that tackles your problem with standard PHP coding style and using PEAR. Very comprehensive and useful. -- Mitch From mitchy at spacemonkeylabs.com Tue Mar 2 11:26:10 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Tue, 02 Mar 2004 11:26:10 -0500 Subject: [nycphp-talk] multiple file uploading In-Reply-To: <4044B4CD.3070308@spacemonkeylabs.com> References: <29360848-6C61-11D8-8AE6-000502F1DDFC@click3x.com> <4044B4CD.3070308@spacemonkeylabs.com> Message-ID: <4044B5A2.1040809@spacemonkeylabs.com> Mitch Pirtle wrote: > $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); > $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); > $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); > $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); > $form->addRule('myfile', 'Required', 'uploadedfile', NULL, 'client'); Whups, forgot to correct the names of the elements to 'file1', 'file2', etc. Also note that HTML_QuickForm can enforce mimetype checks, size constraints... Take a look at the documentation for examples. -- Mitch From rahmin at insite-out.com Tue Mar 2 13:07:15 2004 From: rahmin at insite-out.com (Rahmin Pavlovic) Date: Tue, 2 Mar 2004 13:07:15 -0500 Subject: [nycphp-talk] saving HTML files w/character entities Message-ID: <200403021807.i22I7Fha005593@webmail5.megamailservers.com> An embedded and charset-unspecified text was scrubbed... Name: not available URL: From mlevy at hypersol.com Tue Mar 2 14:37:52 2004 From: mlevy at hypersol.com (Mauricio Sadicoff) Date: Tue, 2 Mar 2004 14:37:52 -0500 Subject: [nycphp-talk] soon to be father In-Reply-To: References: <200402280304.i1S34v0v021064@ms-smtp-01.nyroc.rr.com> Message-ID: <18444D32-6C81-11D8-B147-000A95B352F0@hypersol.com> On Feb 29, 2004, at 10:35 AM, rinaudom at tiscali.it wrote: > I don't know you, Dan, but I say: > > for($a = 0; $a < 100000; $a++){ > ?> > Best wishes, Dan!!!
> } > ?> I'd rewrite that as "; ?> Meaning the same in much cleaner code. Cheers and good luck to Dan, Mauricio --- Mauricio L. Sadicoff mlevy at hypersol.com CEO / President HyperSol LLC. http://www.hypersol.com "Peace of mind isn't at all superficial, really," I expound. "It's the whole thing. That which produces it is good maintenance; that which disturbs it is poor maintenance. What we call workability of the machine is just an objectification of this peace of mind. The ultimate test is always your own serenity." - Zen and the Art of Motorcycle Maintenance. From nyphp at websapp.com Tue Mar 2 14:46:51 2004 From: nyphp at websapp.com (Daniel Kushner) Date: Tue, 2 Mar 2004 14:46:51 -0500 Subject: [nycphp-talk] soon to be father In-Reply-To: <18444D32-6C81-11D8-B147-000A95B352F0@hypersol.com> Message-ID: <200403021946.i22Jkqrk015379@ns5.oddcast.com> > I'd rewrite that as > for ($a =0; $a < 100000;$a++) > echo "Best wishes, Dan!!!
"; > ?> > > Meaning the same in much cleaner code. Sorry to do this, but I have the urge: "; ?> --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.604 / Virus Database: 384 - Release Date: 3/1/2004 From andrew at digitalpulp.com Tue Mar 2 14:51:38 2004 From: andrew at digitalpulp.com (Andrew Yochum) Date: Tue, 2 Mar 2004 14:51:38 -0500 Subject: [nycphp-talk] soon to be father In-Reply-To: <200403021946.i22Jkqrk015379@ns5.oddcast.com> References: <18444D32-6C81-11D8-B147-000A95B352F0@hypersol.com> <200403021946.i22Jkqrk015379@ns5.oddcast.com> Message-ID: <20040302195130.GE24472@thighmaster.digitalpulp.com> On Tue, Mar 02, 2004 at 02:46:51PM -0500, Daniel Kushner wrote: > > I'd rewrite that as > > > for ($a =0; $a < 100000;$a++) > > echo "Best wishes, Dan!!!
"; > > ?> > > > > Meaning the same in much cleaner code. > > Sorry to do this, but I have the urge: > > for ($a = 0; $a < 1;) > echo "Best wishes, Dan!!!
"; > ?> Isn't PHP overkill for a simple task like this? #!/bin/bash yes 'Best wishes, Dan!!!
' Less overhead! ;-) -- Andrew Yochum Digital Pulp, Inc. 212.679.0676x255 andrew at digitalpulp.com From dmintz at davidmintz.org Tue Mar 2 15:28:49 2004 From: dmintz at davidmintz.org (David Mintz) Date: Tue, 2 Mar 2004 15:28:49 -0500 (EST) Subject: [nycphp-talk] soon to be father In-Reply-To: <200403021946.i22Jkqrk015379@ns5.oddcast.com> References: <200403021946.i22Jkqrk015379@ns5.oddcast.com> Message-ID: I propose we commit this revision to the repository: while (true) { echo "Best wishes, Dan!!!
"; } On Tue, 2 Mar 2004, Daniel Kushner wrote: > > I'd rewrite that as > > > for ($a =0; $a < 100000;$a++) > > echo "Best wishes, Dan!!!
"; > > ?> > > > > Meaning the same in much cleaner code. > > Sorry to do this, but I have the urge: > > for ($a = 0; $a < 1;) > echo "Best wishes, Dan!!!
"; > ?> > > > --- > Outgoing mail is certified Virus Free. > Checked by AVG anti-virus system (http://www.grisoft.com). > Version: 6.0.604 / Virus Database: 384 - Release Date: 3/1/2004 > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From james at surgam.net Tue Mar 2 15:32:15 2004 From: james at surgam.net (James Wetterau) Date: Tue, 02 Mar 2004 15:32:15 -0500 Subject: [nycphp-talk] soon to be father Message-ID: <200403022032.i22KWGa26004@panix2.panix.com> Andrew Yochum says: ...> > Isn't PHP overkill for a simple task like this? > > #!/bin/bash > yes 'Best wishes, Dan!!!
' > > Less overhead! ;-) ... Dude -- Just because Dan's forking a child process, doesn't mean we have to. How about: #!/usr/bin/yes Best Wishes, Dan!!!
There's your 40 byte script solution. :-) From cmerlo at ncc.edu Tue Mar 2 20:42:51 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Tue, 2 Mar 2004 20:42:51 -0500 Subject: [nycphp-talk] GMT -> EST or EDT Message-ID: <20040303014251.GB5058@ncc.edu> Have any of you had to display local time on a server that uses GMT? I'm searching around Google trying to figure out how best to calculate NY time. I don't want to just subtract 6 from the hour, because then I'd have to manually change the code twice a year. It seems that the setlocale method *might* work, but I can't figure out what to send it. Calling it as: setlocale( LC_TIME, "EST" ); doesn't seem to do the trick. Help? TIA, -c -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo The Internet interprets censorship as damage and routes around it. - John Gilmore -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From suzerain at suzerain.com Tue Mar 2 21:14:24 2004 From: suzerain at suzerain.com (Marc Antony Vose) Date: Tue, 2 Mar 2004 21:14:24 -0500 Subject: [nycphp-talk] handling long articles...and MS Word In-Reply-To: <00e701c3fd4e$0926ccc0$6400a8c0@thinkpad> References: <00e701c3fd4e$0926ccc0$6400a8c0@thinkpad> Message-ID: Hi there: I've designed a bajillion database-driven Web projects in the past, but I've got a client requesting something that is entirely reasonable (conceptually), but a logistical nightmare. Generally, I try not to store any HTML in a database, no matter what. Further, in this situation, the content editor needs a setup where they do zero coding, and can have the following features: -- basic formatting, including bold, italic, underline...basically, a few styles that would be pre-defined and available to them -- inline articles (not much of a problem, really, i already just auto-flow images into articles at regularly spaced intervals, and the client is happy with that approach -- in-article footnotes that automatically link to (in this case) a popup window containing footnotes -- in-article sidebar links that spawn a popup with some special information (like a QuickTime video, or Flash movie, or file download). It sounds like their text will be originating from Microsoft Word, which is of course the bane of my existence, since I am a Unix guy. So, my question is...how best to handle this problem? The solution needs to be as quick and cheap as possible. I see several alternatives: (1) XML Is it feasible to get any kind of XML output from Microsoft Word that could be parsed by a script and auto-imported? (2) Visual Basic Is it possible to write a VB script that would step through his Word documents and create an XML document, or something, that my script would parse, noting things like bolded text, footnotes, and other stuff along the way? (3) ??? Can anyone share their strategy for this sort of thing? Right now, believe it or not, I am leaning toward diving into REALbasic and coding my own cross-platform Windows/OS X XML document editor to sell to clients who make these kinds of requests, for them to prepare their Web-based documents in, rather than dealing with all the vagaries of going from Word to ASCII or Unicode-compatible textual content dynamically. But maybe that is just an irrational reaction to the mounting tension in my head... -- Marc Antony Vose http://www.suzerain.com/ I'm looking for something in an *after dinner* burrito. -- Homer Simpson From danielc at analysisandsolutions.com Tue Mar 2 21:45:10 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 2 Mar 2004 21:45:10 -0500 Subject: [nycphp-talk] GMT -> EST or EDT In-Reply-To: <20040303014251.GB5058@ncc.edu> References: <20040303014251.GB5058@ncc.edu> Message-ID: <20040303024510.GA18506@panix.com> Hi: On Tue, Mar 02, 2004 at 08:42:51PM -0500, Christopher R. Merlo wrote: > Have any of you had to display local time on a server that uses GMT? > I'm searching around Google trying to figure out how best to calculate > NY time. I don't want to just subtract 6 from the hour, because then Ahem, you mean 4 or 5 hours for NY time. Here's some code I made up for this purpose, though I've trimmed out stuff that I don't believe is relevant to general use, but haven't thought of the full ramifications of whether it's really needed or not for your needs... /** * Determines if a given date/time combination is either Standard or * Daylight time in the US Eastern Time Zone. * * @param string $Time time to be evaluated * (YYYY-MM-DD HH:MM:SS) * * @return string S if Eastern STANDARD Time. * D if Eastern DAYLIGHT Time. * U zone couldn't be set. */ function getTimeType($Time) { $z = getenv('TZ'); putenv('TZ=EST5EDT'); $Sec = strtotime($Time); switch ( date('O', $Sec) ) { case '-0400': $Zone = 'D'; break; case '-0500': $Zone = 'S'; break; default: // Try this instead. putenv('TZ=US/Eastern'); switch ( date('O', $Sec) ) { case '-0400': $Zone = 'D'; break; case '-0500': $Zone = 'S'; break; default: $Zone = 'U'; $this->Probs[] = 'Could not set Time Zone'; } } putenv("TZ=$z"); return $Zone; } -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From mitchy at spacemonkeylabs.com Tue Mar 2 22:00:19 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Tue, 02 Mar 2004 22:00:19 -0500 Subject: [nycphp-talk] handling long articles...and MS Word In-Reply-To: References: <00e701c3fd4e$0926ccc0$6400a8c0@thinkpad> Message-ID: <40454A43.3080109@spacemonkeylabs.com> Marc Antony Vose wrote: > Generally, I try not to store any HTML in a database, no matter what. > Further, in this situation, the content editor needs a setup where they > do zero coding, and can have the following features: > > -- basic formatting, including bold, italic, underline...basically, a > few styles that would be pre-defined and available to them > > -- inline articles (not much of a problem, really, i already just > auto-flow images into articles at regularly spaced intervals, and the > client is happy with that approach > > -- in-article footnotes that automatically link to (in this case) a > popup window containing footnotes > > -- in-article sidebar links that spawn a popup with some special > information (like a QuickTime video, or Flash movie, or file download). There are tons of TTW (Through The Web) editors out there that are basically javascript calling the freebies built in to IE and Mozilla. Most can handle cut-n-paste right from Word (as they use Microsoft's own code from IE). Some of the most popular ones: http://www.interactivetools.com/products/htmlarea/ http://www.fredck.com/fckeditor/ http://link.altova.com/download_authentic.html http://www.interakt.ro/products/KTML/index.php There's even a website dedicated to them: http://www.bris.ac.uk/is/projects/cms/ttw/ttw.html You also have access to CMS that use them, like: http://www.mamboserver.com/ ...and you can even demo them ALL at: http://www.opensourcecms.com/ DISCLAIMER: I am a Mambo developer, but other than that I like to see what everyone else is doing too :) Most of the TTW editors out there let you add custom buttons, and I think this would work for you regarding footnotes, and some CMS include capabilities to provide a "what's related" sidebar. HTH, -- Mitch From tgales at tgaconnect.com Wed Mar 3 04:30:49 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Wed, 3 Mar 2004 04:30:49 -0500 Subject: [nycphp-talk] handling long articles...and MS Word In-Reply-To: Message-ID: <00b301c40102$3725c100$e98d3818@oberon1> Marc Antony Vose writes: > Right now, believe it or not, I am leaning toward diving into > REALbasic and coding my own cross-platform Windows/OS X XML document > editor to sell to clients who make these kinds of requests, for them > to prepare their Web-based documents in, rather than dealing with all > the vagaries of going from Word to ASCII or Unicode-compatible > textual content dynamically. > I would suggest reading: Thinking XML: The open office file format http://www-106.ibm.com/developerworks/xml/library/x-think15/ There are some resource links in that article that also might prove to be useful. I would be interested in hearing what you decide on. HTH T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From Cbielanski at inta.org Wed Mar 3 09:05:47 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 3 Mar 2004 09:05:47 -0500 Subject: [nycphp-talk] soon to be father Message-ID: Well it's nice to know the spirit of pedanticism is alive and well at NYPHP-Talk ;) Gratz to Dan - this your first spawn? ~C > -----Original Message----- > From: James Wetterau [mailto:james at surgam.net] > Sent: Tuesday, March 02, 2004 3:32 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] soon to be father > > > > Andrew Yochum says: > ...> > > Isn't PHP overkill for a simple task like this? > > > > #!/bin/bash > > yes 'Best wishes, Dan!!!
' > > > > Less overhead! ;-) > ... > > Dude -- Just because Dan's forking a child process, doesn't mean we > have to. How about: > > #!/usr/bin/yes Best Wishes, Dan!!!
> > There's your 40 byte script solution. :-) > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From brent at landover.com Wed Mar 3 09:11:30 2004 From: brent at landover.com (Brent Baisley) Date: Wed, 3 Mar 2004 09:11:30 -0500 Subject: [nycphp-talk] handling long articles...and MS Word In-Reply-To: References: <00e701c3fd4e$0926ccc0$6400a8c0@thinkpad> Message-ID: Perhaps you are looking for something like this: http://www.interactivetools.com/products/htmlarea/index.html Or perhaps something more like Contribute from Macromedia. On Mar 2, 2004, at 9:14 PM, Marc Antony Vose wrote: > Hi there: > > I've designed a bajillion database-driven Web projects in the past, > but I've got a client requesting something that is entirely reasonable > (conceptually), but a logistical nightmare. > > Generally, I try not to store any HTML in a database, no matter what. > Further, in this situation, the content editor needs a setup where > they do zero coding, and can have the following features: > > -- basic formatting, including bold, italic, underline...basically, a > few styles that would be pre-defined and available to them > > -- inline articles (not much of a problem, really, i already just > auto-flow images into articles at regularly spaced intervals, and the > client is happy with that approach > > -- in-article footnotes that automatically link to (in this case) a > popup window containing footnotes > > -- in-article sidebar links that spawn a popup with some special > information (like a QuickTime video, or Flash movie, or file > download). > > It sounds like their text will be originating from Microsoft Word, > which is of course the bane of my existence, since I am a Unix guy. > > So, my question is...how best to handle this problem? The solution > needs to be as quick and cheap as possible. I see several > alternatives: > > (1) XML > Is it feasible to get any kind of XML output from Microsoft Word that > could be parsed by a script and auto-imported? > > (2) Visual Basic > Is it possible to write a VB script that would step through his Word > documents and create an XML document, or something, that my script > would parse, noting things like bolded text, footnotes, and other > stuff along the way? > > (3) ??? > Can anyone share their strategy for this sort of thing? > > Right now, believe it or not, I am leaning toward diving into > REALbasic and coding my own cross-platform Windows/OS X XML document > editor to sell to clients who make these kinds of requests, for them > to prepare their Web-based documents in, rather than dealing with all > the vagaries of going from Word to ASCII or Unicode-compatible textual > content dynamically. > > But maybe that is just an irrational reaction to the mounting tension > in my head... > > > -- > Marc Antony Vose > http://www.suzerain.com/ > > I'm looking for something in an *after dinner* burrito. > -- Homer Simpson > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > -- Brent Baisley Systems Architect Landover Associates, Inc. Search & Advisory Services for Advanced Technology Environments p: 212.759.6400/800.759.0577 From Cbielanski at inta.org Wed Mar 3 10:49:38 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 3 Mar 2004 10:49:38 -0500 Subject: [nycphp-talk] MySQL and ORDER BY kludging Message-ID: Hey list, Does anyone have experience with making MySQL do an ORDER BY for different (or multiple) charsets? I have DB full of unicode (single-byte, I think) strings and the default ORDER BY is UTF-8 according the MySQL docs. They also mention that this can be altered but I couldn't quite figure out how to go about it. Predictably, there is an interest in getting the sort from the query such that: $query = 'Select distinct from MYDB where strings >="S" and strings < "T"'; would capture "S-like" strings starting with [S,s,S,s,S,s,S,s,S,s], which when UTF-8 sorted, the set [S,s,S,s,S,s,S,s] falls last, or > "Z" and for another example, 'Select distinct from MYDB where strings >="C" and strings < "D"'; would bring back strings starting with [C,c,?,C,c,C,c,C,c,C,c]. Any insights? Thanks, Chris Bielanski - [CBielanski at inta.org] Web Programmer, International Trademark Association - [www.inta.org] 1133 Ave. of the Americas - Manhattan p - 212/642-1745 From Cbielanski at inta.org Wed Mar 3 10:54:36 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 3 Mar 2004 10:54:36 -0500 Subject: [nycphp-talk] MySQL and ORDER BY kludging Message-ID: I noticed that my mail encoding ate the special characters - oops. But you nkow what I mean, the characters with grave, diaresis, circumflex, ciron, accent, et al. > -----Original Message----- > From: Chris Bielanski [mailto:Cbielanski at inta.org] > Sent: Wednesday, March 03, 2004 10:50 AM > To: NYPHP Talk (E-mail) > Subject: [nycphp-talk] MySQL and ORDER BY kludging > > > Hey list, > Does anyone have experience with making MySQL do an ORDER BY > for different > (or multiple) charsets? > > I have DB full of unicode (single-byte, I think) strings and > the default > ORDER BY is UTF-8 according the MySQL docs. They also mention > that this can > be altered but I couldn't quite figure out how to go about it. > > Predictably, there is an interest in getting the sort from > the query such > that: > > $query = 'Select distinct from MYDB where strings >="S" and > strings < "T"'; > would capture "S-like" strings starting with > [S,s,S,s,S,s,S,s,S,s], which > when UTF-8 sorted, the set [S,s,S,s,S,s,S,s] falls last, or > "Z" > > and for another example, 'Select distinct from MYDB where > strings >="C" and > strings < "D"'; would bring back strings starting with > [C,c,?,C,c,C,c,C,c,C,c]. > > Any insights? > > Thanks, > Chris Bielanski - [CBielanski at inta.org] > Web Programmer, > International Trademark Association - [www.inta.org] > 1133 Ave. of the Americas - Manhattan > p - 212/642-1745 > > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From adam at trachtenberg.com Wed Mar 3 10:56:23 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Wed, 3 Mar 2004 10:56:23 -0500 (EST) Subject: [nycphp-talk] MySQL and ORDER BY kludging In-Reply-To: References: Message-ID: On Wed, 3 Mar 2004, Chris Bielanski wrote: > Does anyone have experience with making MySQL do an ORDER BY for different > (or multiple) charsets? You want to use MySQL 4.1. See: http://www.mysql.com/doc/en/Charset.html http://www.mysql.com/get/Downloads/Presentations/MySQL-User-Conference-2003/National-Character-Sets-and-Unicode.pdf/from/pick > I have DB full of unicode (single-byte, I think) strings and the default > ORDER BY is UTF-8 according the MySQL docs. They also mention that this can > be altered but I couldn't quite figure out how to go about it. > > Predictably, there is an interest in getting the sort from the query such > that: >From what I've read, you can get MySQL 4.1 to collate a table based on a character set. I haven't actually played with this feature, however, so I would be interested in your experiences. Also, if you're using MySQL 4.1 with PHP 4, be sure to use the --old-passwords flag and don't upgrade the password on any account that uses the old mysql client to the larger length, or you'll be stuck. :) If you're using PHP 5, then you should download the latest MySQL 4.1.x snapshot from http://snaps.mysql.com as the most recent packaged version won't work. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From Cbielanski at inta.org Wed Mar 3 12:05:52 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 3 Mar 2004 12:05:52 -0500 Subject: [nycphp-talk] MySQL and ORDER BY kludging Message-ID: Thanks for the tips, Adam. Based on the docs, we'd have to make the leap from MySQL 3.5.x to <= MySQL 4.1.0 and soon after (or concurrently) migrate to mysqli_*(). Heavy stuff. However, if I am charged with such a task, I will be sure to keep notes on the COLLATE feature and how it works out. ~C > -----Original Message----- > From: Adam Maccabee Trachtenberg [mailto:adam at trachtenberg.com] > Sent: Wednesday, March 03, 2004 10:56 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] MySQL and ORDER BY kludging > > > On Wed, 3 Mar 2004, Chris Bielanski wrote: > > > Does anyone have experience with making MySQL do an ORDER > BY for different > > (or multiple) charsets? > > You want to use MySQL 4.1. See: > > http://www.mysql.com/doc/en/Charset.html > http://www.mysql.com/get/Downloads/Presentations/MySQL-User-Co nference-2003/National-Character-Sets-and-Unicode.pdf/from/pick > I have DB full of unicode (single-byte, I think) strings and the default > ORDER BY is UTF-8 according the MySQL docs. They also mention that this can > be altered but I couldn't quite figure out how to go about it. > > Predictably, there is an interest in getting the sort from the query such > that: >From what I've read, you can get MySQL 4.1 to collate a table based on a character set. I haven't actually played with this feature, however, so I would be interested in your experiences. Also, if you're using MySQL 4.1 with PHP 4, be sure to use the --old-passwords flag and don't upgrade the password on any account that uses the old mysql client to the larger length, or you'll be stuck. :) If you're using PHP 5, then you should download the latest MySQL 4.1.x snapshot from http://snaps.mysql.com as the most recent packaged version won't work. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From adam at trachtenberg.com Wed Mar 3 12:15:44 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Wed, 3 Mar 2004 12:15:44 -0500 (EST) Subject: [nycphp-talk] MySQL and ORDER BY kludging In-Reply-To: References: Message-ID: On Wed, 3 Mar 2004, Chris Bielanski wrote: > Based on the docs, we'd have to make the leap from MySQL 3.5.x to <= MySQL > 4.1.0 and soon after (or concurrently) migrate to mysqli_*(). I am currently trying to figure out the best way to make this move. My current thoughts are to first move to MySQL 4.1, then migrate to PHP 5, then migrate to ext/mysqli. This requires you to run MySQL 4.1 in backwards compatability mode w/r/t password authentication until you make the final jump to ext/mysqli, but I think it's worth it to ease the transition burden because you won't need to make two simultaneous migrations. It also allows you to start using ext/mysqli in your new projects ASAP. Additionally, I think think that a server-side MySQL feature like collation would still be accessible using the older ext/mysql extension. However, all this needs some serious testing. Right now, it's just theory. :) -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From dyun at blue-iceberg.com Wed Mar 3 12:31:48 2004 From: dyun at blue-iceberg.com (David Yun) Date: Wed, 03 Mar 2004 12:31:48 -0500 Subject: [nycphp-talk] php surveys In-Reply-To: Message-ID: Hello All, Not sure if this has already been discussed, but does anyone have a recommendation for a solid, easy-to-implement survey system written in php & mysql? Or maybe some suggestions on how to structure such an application? I am not an advanced object-oriented programmer, but I do have a fair amount of experience writing procedural php websites and lite applications. I need the ability to: 1. Generate survey questions on the fly, using different formats such as multiple-choice and short answers 2. Store results in a db and display results 3. Easily alter the look and feel Thanks and best to all, Dave ............................................................... David Yun Blue Iceberg LLC Website Development | Strategic Marketing | Business Solutions http://www.blue-iceberg.com Tel: 212.413.9226 Ext.9238 Fax: 212.413.9201 From Cbielanski at inta.org Wed Mar 3 12:36:18 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 3 Mar 2004 12:36:18 -0500 Subject: [nycphp-talk] php surveys Message-ID: Dave, Take a look at http://www.phpclasses.org/search.html?words=survey&x=0&y=0&go_search=1 ~C > -----Original Message----- > From: David Yun [mailto:dyun at blue-iceberg.com] > Sent: Wednesday, March 03, 2004 12:32 PM > To: NYPHP Talk > Subject: [nycphp-talk] php surveys > > > Hello All, > > Not sure if this has already been discussed, but does anyone have a > recommendation for a solid, easy-to-implement survey system > written in php & > mysql? Or maybe some suggestions on how to structure such an > application? I > am not an advanced object-oriented programmer, but I do have > a fair amount > of experience writing procedural php websites and lite applications. > > I need the ability to: > 1. Generate survey questions on the fly, using different > formats such as > multiple-choice and short answers > 2. Store results in a db and display results > 3. Easily alter the look and feel > > Thanks and best to all, > Dave > > ............................................................... > David Yun > Blue Iceberg LLC > Website Development | Strategic Marketing | Business Solutions > http://www.blue-iceberg.com > Tel: 212.413.9226 Ext.9238 Fax: 212.413.9201 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From dan at mx2pro.com Wed Mar 3 12:46:27 2004 From: dan at mx2pro.com (Dan Horning) Date: Wed, 3 Mar 2004 12:46:27 -0500 Subject: [nycphp-talk] php surveys In-Reply-To: Message-ID: <200403031746.i23HkglK006272@ms-smtp-03.nyroc.rr.com> http://phpesp.sourceforge.net/ Dan Horning - Technical Systems Administration http://www.mx2pro.com/ http://dan.mx2pro.com/ http://www.dsoundmn.com/ 1-866-284-3150 (Office/Home) > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Chris Bielanski > Sent: Wednesday, March 03, 2004 12:36 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] php surveys > > Dave, > Take a look at > > http://www.phpclasses.org/search.html?words=survey&x=0&y=0&go_search=1 > > ~C > > > -----Original Message----- > > From: David Yun [mailto:dyun at blue-iceberg.com] > > Sent: Wednesday, March 03, 2004 12:32 PM > > To: NYPHP Talk > > Subject: [nycphp-talk] php surveys > > > > > > Hello All, > > > > Not sure if this has already been discussed, but does anyone have a > > recommendation for a solid, easy-to-implement survey system > > written in php & > > mysql? Or maybe some suggestions on how to structure such an > > application? I > > am not an advanced object-oriented programmer, but I do have > > a fair amount > > of experience writing procedural php websites and lite applications. > > > > I need the ability to: > > 1. Generate survey questions on the fly, using different > > formats such as > > multiple-choice and short answers > > 2. Store results in a db and display results > > 3. Easily alter the look and feel > > > > Thanks and best to all, > > Dave > > > > ............................................................... > > David Yun > > Blue Iceberg LLC > > Website Development | Strategic Marketing | Business Solutions > > http://www.blue-iceberg.com > > Tel: 212.413.9226 Ext.9238 Fax: 212.413.9201 > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Wed Mar 3 13:41:49 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 3 Mar 2004 13:41:49 -0500 Subject: [nycphp-talk] php surveys In-Reply-To: <200403031746.i23HkglK006272@ms-smtp-03.nyroc.rr.com> References: <200403031746.i23HkglK006272@ms-smtp-03.nyroc.rr.com> Message-ID: <20040303184148.GA6651@panix.com> Hi Dan: On Wed, Mar 03, 2004 at 12:46:27PM -0500, Dan Horning wrote: > http://phpesp.sourceforge.net/ Thanks for posting that! Looks great. And just in the nick of time. A new client needs to do surveys on line! Have you, or anyone else here, used the package? What do y'all think? Thanks, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From bill at ilovett.com Wed Mar 3 10:28:08 2004 From: bill at ilovett.com (Bill Lovett) Date: Wed, 3 Mar 2004 10:28:08 -0500 Subject: [nycphp-talk] php surveys In-Reply-To: <20040303184148.GA6651@panix.com> References: <200403031746.i23HkglK006272@ms-smtp-03.nyroc.rr.com> <20040303184148.GA6651@panix.com> Message-ID: <20040303152808.GA5167@ilovett.com> On Wed, Mar 03, 2004 at 01:41:49PM -0500, Daniel Convissor wrote: > Have you, or anyone else here, used the package? What do y'all think? I've used phpESP before-- it works as advertised, but does take a little time to learn your way around. I had to give nontechnical users a step by step walkthrough, but they eventually picked it up. Customizing the survey template was a little rough-- it was change a little bit of this file here, change a little of that file there. I got to a point that was good enough for my purposes, but that could be a real problem depending on your circumstances and the degree of customization you need for your users. -bill From mjdewitt at alexcommgrp.com Wed Mar 3 15:48:21 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Wed, 3 Mar 2004 15:48:21 -0500 Subject: [nycphp-talk] php surveys Message-ID: We use it and have kinda forked it to get some extra functionality out of it as the developer was slow to embrace new question types and formatting features. Some simple things like section headings, and text box sizing are missing (or at least were when I last looked which has been a while). We use it for our "light" surveys as its layout is pretty much fixed and the data is kind of chunked out into different tables depending on question type so that it takes some work to put it back together so you can have meaningful column headings and data presented in a single table format for analysis. Its own results page seems fairly capable but very rigid and I believe is not intended to be shown to users (though I am sure you could make it so). Here is an example page: https://www.alexcommgrp.com/csg/csnsurvey0803.php For heavy-duty surveys, we re-use in-house code and develop custom html and datastructures to suit the survey. phpESP really wasn't too bad to work with and it may be a great start for you as it was for us. Mike > -----Original Message----- > From: Bill Lovett [SMTP:bill at ilovett.com] > Sent: Wednesday, March 03, 2004 10:28 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] php surveys > > On Wed, Mar 03, 2004 at 01:41:49PM -0500, Daniel Convissor wrote: > > Have you, or anyone else here, used the package? What do y'all think? > > I've used phpESP before-- it works as advertised, but does take a little > time to learn your way around. I had to give nontechnical users a step > by step walkthrough, but they eventually picked it up. > > Customizing the survey template was a little rough-- it was change a > little bit of this file here, change a little of that file there. I got > to a point that was good enough for my purposes, but that could be a > real problem depending on your circumstances and the degree of > customization you need for your users. > > -bill > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From dyun at blue-iceberg.com Wed Mar 3 16:08:45 2004 From: dyun at blue-iceberg.com (David Yun) Date: Wed, 03 Mar 2004 16:08:45 -0500 Subject: [nycphp-talk] php surveys In-Reply-To: Message-ID: > phpESP really wasn't too bad to work with and it may be a great start for > you as it was for us. Mike, are you suggesting that it might be a good idea to start with some of the code from phpESP and perhaps build on it and customize my own solution? ...especially if I want to be able to have rigid control over the html/style? Thanks Dave ............................................................... David Yun Blue Iceberg LLC Website Development | Strategic Marketing | Business Solutions http://www.blue-iceberg.com Tel: 212.413.9226 Ext.9238 Fax: 212.413.9201 From mjdewitt at alexcommgrp.com Wed Mar 3 16:33:04 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Wed, 3 Mar 2004 16:33:04 -0500 Subject: [nycphp-talk] php surveys Message-ID: You can download and have it running in probably 10 minutes. so you can try out a few survey ideas. If you want to tinker under the hood, you can see how painful this will be in checking out the one main script that does the layout called funcs_render.php (one big loop going through all of the questions) and the one script which defines how each type of question renders in html, funcs_html.inc. Take a look at both of these and you will see the heart of the program. It's hard for me to judge/help you really know if this worthwhile. It works for me as I needed a survey tool that allowed non-programmers to set up surveys that easily embed in our page templates with no need for quick results. James Flemer is the author and he has been helpful in the past. I think he just wasn't interested in some of my changes and so we sort of moved on in different directions. I think that my previous comment about forking may have been misleading about the helpfulness of the author. Mike > Mike, are you suggesting that it might be a good idea to start with some > of > the code from phpESP and perhaps build on it and customize my own > solution? > ...especially if I want to be able to have rigid control over the > html/style? > From coling at macmicro.com Wed Mar 3 19:03:05 2004 From: coling at macmicro.com (Colin Goldberg) Date: Wed, 03 Mar 2004 19:03:05 -0500 Subject: [nycphp-talk] php surveys In-Reply-To: References: Message-ID: <6.0.1.1.0.20040303185448.04295b70@mail.macmicro.com> [Warning: Shameless Plug!] My new product, theBizConnector, has a section that does exactly what you are looking for (by your description), although the surveys created are intended to be embedded in emails. The product uses web-based rich editors for non-technical users to create surveys on the fly - all underlying database support is created, enabling posting of responses by recipients and automatic tabulation of results in real time. The HTML produced could be used on a web page with slight modification. To get a sample survey sent to you, go to http://www.theBizConnector.com and click on "Send a Sample Survey" in the middle of the page. I am trying to address the lack of 100% clarity of my marketing message, so please let me know if you have any questions. Thanks for this opportunity for a shameless plug! - I hope this list does not mind. Colin Goldberg MacMicro Inc. http://www.macmicro.com theBizConnector http://www.theBizConnector.com (Newsletter Subscription at http://www.theBizConnector.com/subscribe.html) 914 472-8292 At 12:31 PM 3/3/04, David Yun wrote: >Hello All, > >Not sure if this has already been discussed, but does anyone have a >recommendation for a solid, easy-to-implement survey system written in php & >mysql? Or maybe some suggestions on how to structure such an application? I >am not an advanced object-oriented programmer, but I do have a fair amount >of experience writing procedural php websites and lite applications. > >I need the ability to: >1. Generate survey questions on the fly, using different formats such as >multiple-choice and short answers >2. Store results in a db and display results >3. Easily alter the look and feel > >Thanks and best to all, >Dave > >............................................................... >David Yun >Blue Iceberg LLC >Website Development | Strategic Marketing | Business Solutions >http://www.blue-iceberg.com >Tel: 212.413.9226 Ext.9238 Fax: 212.413.9201 > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk From suzerain at suzerain.com Thu Mar 4 08:22:53 2004 From: suzerain at suzerain.com (Marc Antony Vose) Date: Thu, 4 Mar 2004 08:22:53 -0500 Subject: [nycphp-talk] handling long articles...and MS Word In-Reply-To: <00b301c40102$3725c100$e98d3818@oberon1> References: <00b301c40102$3725c100$e98d3818@oberon1> Message-ID: Hi there: Just replying to this since Tim said he was interested in what method I chose. About my situation: I am an independent developer whose clients are small business whose character or integrity I like, or non profits and documentary filmmakers. Basically, this means people who have no money. :) Therefore, my decisions are generally made given that I have smaller budgets and fewer people (read: me) at my disposal. So, after looking into all this stuff, I decided to take htmlArea and slap it in as an optional feature of my custom-built CMS, which I have been developing for years. For me, design is the number one concern, so a pre-built CMS is really not an option. Generally, their layout and design is structured around a fairly narrow set of potential uses; plus, you have to struggle against other people's code when you want to customize. So, back in 1998, I chose to build my own system from the ground up. It is great in some ways, and sorely lacking in others, but at least I know what every single line of code does without even thinking about it. Part of the system is a form generation class, and an admin tool framework, which I reuse on projects, so I was concerned that merging something like this would cause me to have to make wholesale changes. However, I am, like, really pleasantly surprised to find that this htmlArea JavaScript component is able to be merged into my CMS, without disturbing one line of my code! This makes me happy. And the JS code is very well-written and amenable to customization. Thanks to Mitch and Brent, for getting me on this track, and thanks for the heads-up about OpenOffice, too. I really wish there were a common Word processor document standard based around XML so that files could easily be directly parsed. That would be my preferred solution for this kind of thing, in the long run, but right now it's too much work, and Open Office isn't exactly idiot-proof yet on OS X (still running in X11). Maybe we're a few years away from this being a viable option. Cheers, Marc Antony Vose http://www.suzerain.com/ What can be shown cannot be said. -- Ludwig Wittgenstein >Marc Antony Vose writes: > >> Right now, believe it or not, I am leaning toward diving into >> REALbasic and coding my own cross-platform Windows/OS X XML document >> editor to sell to clients who make these kinds of requests, for them >> to prepare their Web-based documents in, rather than dealing with all >> the vagaries of going from Word to ASCII or Unicode-compatible >> textual content dynamically. >> > >I would suggest reading: >Thinking XML: The open office file format >http://www-106.ibm.com/developerworks/xml/library/x-think15/ > >There are some resource links in that article >that also might prove to be useful. > >I would be interested in hearing >what you decide on. > >HTH > >T. Gales & Associates From lists at prusak.com Thu Mar 4 11:46:33 2004 From: lists at prusak.com (Ophir Prusak) Date: Thu, 04 Mar 2004 11:46:33 -0500 Subject: [nycphp-talk] Inventory Management in PHP? Message-ID: <40475D69.6030104@prusak.com> Hi All, I've been tasked to find a solution to an Inventory Management issue one of our clients currently has. Currently they use a central Excel spreadsheet for their inventory management. They manage items which are sold on a date basis (think TV advertising). When a sales person wants to know inventory status, make a reservation or commit to a sale, they phone the spreadsheet owner to make their inquiry or request. I'm looking for a simple PHP open source web based solution to this. Users could check inventory status, make a reservation or commit to a sale all through the web interface. The administrator could setup the different types of products and change inventory levels (when new products come in) as well administer the system's users. It's important for the solution to be "date based". For example, a user could see what's available for the month of Jan in the 8:00 - 9:00 PM slot. Has anyone ever used anything like this ? I know this is a pretty straight forward project, but no point in re-inventing the wheel. Thanx Ophir From mjdewitt at alexcommgrp.com Thu Mar 4 14:04:01 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Thu, 4 Mar 2004 14:04:01 -0500 Subject: [nycphp-talk] Interesting php based search engine ranking package Message-ID: I just downloaded and setup today a GPL package called phpSERA which performs search engine rankings on both an ad hoc and historical basis with graphing. You can find it here: http://phpsera.sourceforge.net/ So far it looks good and it takes about 5 minutes to setup. I have been looking for a package like this for a while and I figured others might be interested in it as well. If you want to check it out without getting your hands dirty, there is a live demo linked off the website and screen shots. Mike From salmaz8347 at hotmail.com Thu Mar 4 20:05:21 2004 From: salmaz8347 at hotmail.com (SALMAN MAZHAR) Date: Thu, 04 Mar 2004 20:05:21 -0500 Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX Message-ID: Hello, I was trying to search for strings in a pdf file that is on the unix system. I looked for other tools to search in pdf files but so far I have found none. Is there a way in Unix itself like the grep command or something else that can help me search for strings in pdf files? If anyone knows about it, then please kindly let me know. Thanks, Salman. _________________________________________________________________ Create a Job Alert on MSN Careers and enter for a chance to win $1000! http://msn.careerbuilder.com/promo/kaday.htm?siteid=CBMSN_1K&sc_extcmp=JS_JASweep_MSNHotm2 From mjdewitt at alexcommgrp.com Thu Mar 4 20:42:55 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Thu, 4 Mar 2004 20:42:55 -0500 Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX Message-ID: I am using xpdf to get text out of pdfs. You can get it here http://www.foolabs.com/xpdf/index.html. Mike > -----Original Message----- > From: SALMAN MAZHAR [SMTP:salmaz8347 at hotmail.com] > Sent: Thursday, March 04, 2004 8:05 PM > To: talk at lists.nyphp.org > Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX > > Hello, > > I was trying to search for strings in a pdf file that is on the unix > system. > I looked for other tools to > search in pdf files but so far I have found none. Is there a way in Unix > itself like the grep command or something else that can help me search for > > strings in pdf files? > > If anyone knows about it, then please kindly let me know. > > Thanks, > Salman. > > _________________________________________________________________ > Create a Job Alert on MSN Careers and enter for a chance to win $1000! > http://msn.careerbuilder.com/promo/kaday.htm?siteid=CBMSN_1K&sc_extcmp=JS_ > JASweep_MSNHotm2 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From danielc at analysisandsolutions.com Thu Mar 4 21:12:19 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Thu, 4 Mar 2004 21:12:19 -0500 Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX In-Reply-To: References: Message-ID: <20040305021219.GA28423@panix.com> On Thu, Mar 04, 2004 at 08:42:55PM -0500, DeWitt, Michael wrote: > I am using xpdf to get text out of pdfs. ... IF you've got X windows going. Let's see what Panix has... d> apropos pdf | grep text latex, elatex, lambda, pdflatex (1) - structured text formatting and typesetting pdftotext (1) - Portable Document Format (PDF) to text converter (version 2.02) That second one looks like it'll fit the bill. d> man pdftotext ... snip ... Pdftotext reads the PDF file, PDF-file, and writes a text file, text-file. If text-file is not specified, pdftotext converts file.pdf to file.txt. If text-file is '-', the text is sent to stdout. ... snip ... d> pdftotext afile.pdf - | grep stringicareabout Works like a charm. Enjoy, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From mjdewitt at alexcommgrp.com Thu Mar 4 21:17:35 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Thu, 4 Mar 2004 21:17:35 -0500 Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX Message-ID: Dan, Isn't pdftotext part of the xpdf package? Mike > -----Original Message----- > From: Daniel Convissor [SMTP:danielc at analysisandsolutions.com] > Sent: Thursday, March 04, 2004 9:12 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX > > On Thu, Mar 04, 2004 at 08:42:55PM -0500, DeWitt, Michael wrote: > > I am using xpdf to get text out of pdfs. > > ... IF you've got X windows going. > > Let's see what Panix has... > > d> apropos pdf | grep text > > latex, elatex, lambda, pdflatex (1) - structured text formatting and > typesetting > pdftotext (1) - Portable Document Format (PDF) to text converter > (version 2.02) > > That second one looks like it'll fit the bill. > > d> man pdftotext > ... snip ... > Pdftotext reads the PDF file, PDF-file, and writes a text > file, text-file. If text-file is not specified, pdftotext > converts file.pdf to file.txt. If text-file is '-', the > text is sent to stdout. > ... snip ... > > d> pdftotext afile.pdf - | grep stringicareabout > > Works like a charm. > > Enjoy, > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From danielc at analysisandsolutions.com Thu Mar 4 21:21:22 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Thu, 4 Mar 2004 21:21:22 -0500 Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX In-Reply-To: References: Message-ID: <20040305022122.GA1082@panix.com> Howdy: On Thu, Mar 04, 2004 at 09:17:35PM -0500, DeWitt, Michael wrote: > > Isn't pdftotext part of the xpdf package? >From the man page, looks like it is. But one doesn't need to have xwindows running in order to use pdftotext. Seems like xpdf does. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From mjdewitt at alexcommgrp.com Thu Mar 4 21:28:40 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Thu, 4 Mar 2004 21:28:40 -0500 Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX Message-ID: Dan, Ha, that is funny, I didn't know there was a binary xpdf. I have never used it, just pdftotext. I am looking at the directory for xpdf and can see it now. xpdf seems nice - renders much faster than acrobat and looks fairly accurate. Mike > -----Original Message----- > From: Daniel Convissor [SMTP:danielc at analysisandsolutions.com] > Sent: Thursday, March 04, 2004 9:21 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX > > Howdy: > > On Thu, Mar 04, 2004 at 09:17:35PM -0500, DeWitt, Michael wrote: > > > > Isn't pdftotext part of the xpdf package? > > >From the man page, looks like it is. But one doesn't need to have > xwindows running in order to use pdftotext. Seems like xpdf does. > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From dmintz at davidmintz.org Fri Mar 5 10:44:10 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 5 Mar 2004 10:44:10 -0500 (EST) Subject: [nycphp-talk] we need a PEAR book In-Reply-To: References: Message-ID: I look forward to a nice fat heavy book about PEAR, preferably one with a cute furry creature on the cover. When it's available I'll whip out my credit card so fast it'll make your head spin. Even if it is out of date the moment it hits the shelves. I just felt like sharing that as I go nucking futs in my quest to learn to use some of these packages. Thanks for letting me vent (-: --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From erank at isthmus.com Fri Mar 5 11:41:38 2004 From: erank at isthmus.com (Eric Rank) Date: Fri, 5 Mar 2004 10:41:38 -0600 Subject: [nycphp-talk] we need a PEAR book References: Message-ID: <006601c402d0$bb371960$8b01a8c0@DB> I second that. The other night I literally had to go for a walk around the block to cool off after spending a couple hours getting nowhere trying to learn DB_DataObject. Searching "DB_DataObject PEAR tutorial" in Google was of no help either. Doing that mostly brought up mirrors of the same docs found at pear.php.net Does anyone have good resources for this stuff? E. ----- Original Message ----- From: "David Mintz" To: "NYPHP Talk" Sent: Friday, March 05, 2004 9:44 AM Subject: [nycphp-talk] we need a PEAR book > > I look forward to a nice fat heavy book about PEAR, preferably one with a > cute furry creature on the cover. When it's available I'll whip out my > credit card so fast it'll make your head spin. Even if it is out of date > the moment it hits the shelves. > > I just felt like sharing that as I go nucking futs in my quest to learn to > use some of these packages. Thanks for letting me vent (-: > > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From sklar at sklar.com Fri Mar 5 11:50:32 2004 From: sklar at sklar.com (David Sklar) Date: Fri, 5 Mar 2004 11:50:32 -0500 Subject: [nycphp-talk] we need a PEAR book In-Reply-To: Message-ID: David Mintz wrote: > I look forward to a nice fat heavy book about PEAR, preferably one > with a cute furry creature on the cover. When it's available I'll > whip out my credit card so fast it'll make your head spin. Even if it > is out of date the moment it hits the shelves. > > I just felt like sharing that as I go nucking futs in my quest to > learn to use some of these packages. Thanks for letting me vent (-: My book "Essential PHP Tools" covers PEAR DB, ADODB, HTML_QuickForm, Smarty, XML_Parser, XML_RPC, SOAP, SimpleXML, Mail, Mail_mime, Auth, Auth_HTTP, xdebug, apc, phpa, and mmcache. Those aren't all PEAR modules but many of them are. It should be out in a few weeks. --> http://www.amazon.com/exec/obidos/tg/detail/-/1590592808 David From dcallaghan at linuxmail.org Fri Mar 5 11:55:24 2004 From: dcallaghan at linuxmail.org (Dave Callaghan) Date: Fri, 05 Mar 2004 11:55:24 -0500 Subject: [nycphp-talk] we need a PEAR book Message-ID: <20040305165524.176F157C004@ws5-4.us4.outblaze.com> The only resource that I've ever found that actually works consistently is to actually read the code itself. This isn't a smart-assed RTFC comment, bcs I would knock you down to get a PEAR book. I LOVE good documentation and I feel the lack of it takes away from the quality of the application itself. But after repeatedly reading sparse tutorials or just getting NADA-doc dumps, I don't even watse my time anymore. There is good news when you go this route, though. First of all, PHP isn't Perl; you can read it even if you didn't write it. Secondly, there are often nice samples included with the package and the code is very clean. The package that finally took me over the edge was HTML_QuickForm_Controller. If you use and love HTML_QucikForm, which I do, and you make a lot of multi-page applications and wizards, which I do, this is a magnificent package. But can you get it to work? First, google around a bit. Get nice and frustrated. Now, go to the source and open the samples provided. You'll be up and running suprisingly quickly. So, I can't WAIT to get a good PEAR book. But in the meantime, I block off a chunk of time to read the code and any samples they may give me. In the end, its still quicker than rolling it yourself. But it isn't as quick as a nice reference would make it. > I second that. The other night I literally had to go for a walk around the > block to cool off after spending a couple hours getting nowhere trying to > learn DB_DataObject. Searching "DB_DataObject PEAR tutorial" in Google was > of no help either. Doing that mostly brought up mirrors of the same docs > found at pear.php.net > > Does anyone have good resources for this stuff? > > E. > > > > > ----- Original Message ----- > From: "David Mintz" > To: "NYPHP Talk" > Sent: Friday, March 05, 2004 9:44 AM > Subject: [nycphp-talk] we need a PEAR book > > > > > > I look forward to a nice fat heavy book about PEAR, preferably one with a > > cute furry creature on the cover. When it's available I'll whip out my > > credit card so fast it'll make your head spin. Even if it is out of date > > the moment it hits the shelves. > > > > I just felt like sharing that as I go nucking futs in my quest to learn to > > use some of these packages. Thanks for letting me vent (-: > > > > > > --- > > David Mintz > > http://davidmintz.org/ > > > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk -- ______________________________________________ Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox. Powered by Outblaze From Cbielanski at inta.org Fri Mar 5 12:00:36 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 5 Mar 2004 12:00:36 -0500 Subject: [nycphp-talk] we need a PEAR book Message-ID: So with all this thrashing and cursing about the lack of docs, how come nobody using (or learning to use) PEAR is signing on the the doc project? > -----Original Message----- > From: Dave Callaghan [mailto:dcallaghan at linuxmail.org] > Sent: Friday, March 05, 2004 11:55 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] we need a PEAR book > > > The only resource that I've ever found that actually works > consistently is to actually read the code itself. > > This isn't a smart-assed RTFC comment, bcs I would knock you > down to get a PEAR book. I LOVE good documentation and I feel > the lack of it takes away from the quality of the application itself. > > But after repeatedly reading sparse tutorials or just getting > NADA-doc dumps, I don't even watse my time anymore. There is > good news when you go this route, though. First of all, PHP > isn't Perl; you can read it even if you didn't write it. > Secondly, there are often nice samples included with the > package and the code is very clean. > > The package that finally took me over the edge was > HTML_QuickForm_Controller. If you use and love > HTML_QucikForm, which I do, and you make a lot of multi-page > applications and wizards, which I do, this is a magnificent package. > > But can you get it to work? > > First, google around a bit. Get nice and frustrated. Now, go > to the source and open the samples provided. You'll be up and > running suprisingly quickly. > > So, I can't WAIT to get a good PEAR book. But in the > meantime, I block off a chunk of time to read the code and > any samples they may give me. In the end, its still quicker > than rolling it yourself. But it isn't as quick as a nice > reference would make it. > > > > I second that. The other night I literally had to go for a > walk around the > > block to cool off after spending a couple hours getting > nowhere trying to > > learn DB_DataObject. Searching "DB_DataObject PEAR > tutorial" in Google was > > of no help either. Doing that mostly brought up mirrors of > the same docs > > found at pear.php.net > > > > Does anyone have good resources for this stuff? > > > > E. > > > > > > > > > > ----- Original Message ----- > > From: "David Mintz" > > To: "NYPHP Talk" > > Sent: Friday, March 05, 2004 9:44 AM > > Subject: [nycphp-talk] we need a PEAR book > > > > > > > > > > I look forward to a nice fat heavy book about PEAR, > preferably one with a > > > cute furry creature on the cover. When it's available > I'll whip out my > > > credit card so fast it'll make your head spin. Even if it > is out of date > > > the moment it hits the shelves. > > > > > > I just felt like sharing that as I go nucking futs in my > quest to learn to > > > use some of these packages. Thanks for letting me vent (-: > > > > > > > > > --- > > > David Mintz > > > http://davidmintz.org/ > > > > > > "Anybody else got a problem with Webistics?" -- > Sopranos 24:17 > > > _______________________________________________ > > > talk mailing list > > > talk at lists.nyphp.org > > > http://lists.nyphp.org/mailman/listinfo/talk > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > -- > ______________________________________________ > Check out the latest SMS services @ http://www.linuxmail.org > This allows you to send and receive SMS through your mailbox. > > Powered by Outblaze > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From bpang at bpang.com Fri Mar 5 12:10:19 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Fri, 5 Mar 2004 12:10:19 -0500 (EST) Subject: [nycphp-talk] we need a PEAR book In-Reply-To: <006601c402d0$bb371960$8b01a8c0@DB> References: <006601c402d0$bb371960$8b01a8c0@DB> Message-ID: <.38.117.145.89.1078506619.squirrel@www.bpang.com> admission: I haven't used or seriously looked at PEAR question: How can PEAR be regarded as [so] great if it causes such angst for what might be considered routine tasks? (see admission above: maybe these tasks aren't so routine?) > I second that. The other night I literally had to go for a walk around the > block to cool off after spending a couple hours getting nowhere trying to > learn DB_DataObject. Searching "DB_DataObject PEAR tutorial" in Google was > of no help either. Doing that mostly brought up mirrors of the same docs > found at pear.php.net > > Does anyone have good resources for this stuff? From jonbaer at jonbaer.net Fri Mar 5 12:11:29 2004 From: jonbaer at jonbaer.net (jon baer) Date: Fri, 5 Mar 2004 12:11:29 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? Message-ID: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> LOL ... what in the world ... http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html -snip- NEW YORK (AP) -- If the U.S. Postal Service delivered mail for free, our mailboxes would surely runneth over with more credit-card offers, sweepstakes entries, and supermarket fliers. That's why we get so much junk e-mail: It's essentially free to send. So Microsoft Corp. chairman Bill Gates, among others, is now suggesting that we start buying "stamps" for e-mail. -snip- pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 From Cbielanski at inta.org Fri Mar 5 12:18:27 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 5 Mar 2004 12:18:27 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? Message-ID: Why of course!! By making it so that the average user can't send email without buying postage, we'll virtually assure than no corporate marketing campaign can bludgeon us to hell with their spam!! How come we never thought of this before?! oops.. forgot the sarcasm tags... > -----Original Message----- > From: jon baer [mailto:jonbaer at jonbaer.net] > Sent: Friday, March 05, 2004 12:11 PM > To: talk at lists.nyphp.org > Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? > > > LOL ... what in the world ... > > http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html > > -snip- > NEW YORK (AP) -- If the U.S. Postal Service delivered mail > for free, our > mailboxes would surely runneth over with more credit-card offers, > sweepstakes entries, and supermarket fliers. That's why we > get so much junk > e-mail: It's essentially free to send. So Microsoft Corp. > chairman Bill > Gates, among others, is now suggesting that we start buying > "stamps" for > e-mail. > -snip- > > pgp key: http://www.jonbaer.net/jonbaer.asc > fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Fri Mar 5 12:16:38 2004 From: jonbaer at jonbaer.net (jon baer) Date: Fri, 5 Mar 2004 12:16:38 -0500 Subject: [nycphp-talk] we need a PEAR book / db References: <006601c402d0$bb371960$8b01a8c0@DB> <.38.117.145.89.1078506619.squirrel@www.bpang.com> Message-ID: <006701c402d5$9ec114c0$6400a8c0@thinkpad> i actually meant to ask this @ the last meeting ... much of the core PHP stuff seems to be useless (maybe) without its surrounding plugins/extensions/and PEAR ... I strongly beleive that if much of what goes on (like PearDB) was completely built-in to PHP itself you would have alot more people jumping into it - there seems to be no movement for that (in PHP5 or discussion) ... which is odd because it already contains a few built in classes. Is there a flipside to creating good extensions and then building them directly into the core so that they show up in programming books + tutorials on their own? - jon ----- Original Message ----- From: To: "NYPHP Talk" Sent: Friday, March 05, 2004 12:10 PM Subject: Re: [nycphp-talk] we need a PEAR book > admission: I haven't used or seriously looked at PEAR > > question: How can PEAR be regarded as [so] great if it causes such angst > for what might be considered routine tasks? > (see admission above: maybe these tasks aren't so routine?) From cmerlo at ncc.edu Fri Mar 5 12:18:21 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Fri, 5 Mar 2004 12:18:21 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> Message-ID: <20040305171821.GA8900@ncc.edu> On 2004-03-05 12:11 -0500, jon baer wrote: > So Microsoft Corp. chairman Bill Gates, among others, is now > suggesting that we start buying "stamps" for e-mail. Let me guess: He suggests we buy them *from him*. -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo If I were two-faced, would I be wearing this one? - Abraham Lincoln -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From csnyder at chxo.com Fri Mar 5 12:19:04 2004 From: csnyder at chxo.com (Chris Snyder) Date: Fri, 05 Mar 2004 12:19:04 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> Message-ID: <4048B688.9030903@chxo.com> jon baer wrote: >we start buying "stamps" for >e-mail. > > > Well, no more free beer at the NYPHP meetings, folks. We need the money to pay for list postage. :-( From agfische at email.smith.edu Fri Mar 5 12:20:51 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 12:20:51 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> Message-ID: <73937DA0-6EC9-11D8-90EF-0003930D07F2@email.smith.edu> Unbelievable. Truly unbelievable. What an ass. -Aaron On Mar 5, 2004, at 12:11 PM, jon baer wrote: > LOL ... what in the world ... > > http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html From mitchy at spacemonkeylabs.com Fri Mar 5 12:23:20 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 05 Mar 2004 12:23:20 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> Message-ID: <4048B788.70001@spacemonkeylabs.com> jon baer wrote: > LOL ... what in the world ... > > http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html This is concrete proof that, despite the fact that smoking crack is illegal, some people still do it. -- Mitch From jlacey at att.net Fri Mar 5 12:23:23 2004 From: jlacey at att.net (John Lacey) Date: Fri, 05 Mar 2004 10:23:23 -0700 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <4048B688.9030903@chxo.com> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> <4048B688.9030903@chxo.com> Message-ID: <4048B78B.7090005@att.net> Chris Snyder wrote: > jon baer wrote: > >> we start buying "stamps" for >> e-mail. >> >> >> > Well, no more free beer at the NYPHP meetings, folks. > We need the money to pay for list postage. :-( Franking privileges as monthly swag?? :) From dmintz at davidmintz.org Fri Mar 5 12:37:12 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 5 Mar 2004 12:37:12 -0500 (EST) Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <4048B788.70001@spacemonkeylabs.com> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> <4048B788.70001@spacemonkeylabs.com> Message-ID: On Fri, 5 Mar 2004, Mitch Pirtle wrote: > jon baer wrote: > > > LOL ... what in the world ... > > > > http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html > > This is concrete proof that, despite the fact that smoking crack is > illegal, some people still do it. That's because illegality is no deterrent to people who want to smoke crack. Oops sorry now I'm OT-OT. Guess I'll go hit the pipe now. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From dmintz at davidmintz.org Fri Mar 5 12:41:40 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 5 Mar 2004 12:41:40 -0500 (EST) Subject: [nycphp-talk] we need a PEAR book In-Reply-To: References: Message-ID: Sold. Wrap it up. On Fri, 5 Mar 2004, David Sklar wrote: > > My book "Essential PHP Tools" covers PEAR DB, ADODB, HTML_QuickForm, > Smarty, XML_Parser, XML_RPC, SOAP, SimpleXML, Mail, Mail_mime, Auth, > Auth_HTTP, xdebug, apc, phpa, and mmcache. > > Those aren't all PEAR modules but many of them are. > > It should be out in a few weeks. > --> http://www.amazon.com/exec/obidos/tg/detail/-/1590592808 > --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From jonbaer at jonbaer.net Fri Mar 5 12:44:35 2004 From: jonbaer at jonbaer.net (jon baer) Date: Fri, 5 Mar 2004 12:44:35 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> <73937DA0-6EC9-11D8-90EF-0003930D07F2@email.smith.edu> Message-ID: <00b701c402d9$86532050$6400a8c0@thinkpad> That will be .38 please :-) -----BEGIN EMAIL STAMP ----- Version: 1.0.0 m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT -----END EMAIL STAMP ----- ----- Original Message ----- From: "Aaron Fischer" To: "NYPHP Talk" Sent: Friday, March 05, 2004 12:20 PM Subject: Re: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? > Unbelievable. Truly unbelievable. What an ass. > > -Aaron > > On Mar 5, 2004, at 12:11 PM, jon baer wrote: > > > LOL ... what in the world ... > > > > http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Fri Mar 5 13:03:40 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 5 Mar 2004 13:03:40 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> Message-ID: <20040305180340.GA25923@panix.com> On Fri, Mar 05, 2004 at 12:11:29PM -0500, jon baer wrote: This article is absurd for two reasons... > NEW YORK (AP) -- If the U.S. Postal Service delivered mail for free, our > mailboxes would surely runneth over with more credit-card offers, > sweepstakes entries, and supermarket fliers. Last time I checked, most mailboxes do "runneth over" with this crap, despite mailers paying for the privilege, albeit at a heavily discounted rate. > e-mail: It's essentially free to send. So Microsoft Corp. chairman Bill > Gates, among others, is now suggesting that we start buying "stamps" for > e-mail. This was announced about a month ago. Guess his PR people are looking to get more recognition for the big man and the writers/editors at AP have no memory and/or just don't care. Using news.google.com on "gates pay email" I find the first references to this were on 2 Feb. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From danielc at analysisandsolutions.com Fri Mar 5 13:05:53 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 5 Mar 2004 13:05:53 -0500 Subject: [nycphp-talk] we need a PEAR book In-Reply-To: <.38.117.145.89.1078506619.squirrel@www.bpang.com> References: <006601c402d0$bb371960$8b01a8c0@DB> <.38.117.145.89.1078506619.squirrel@www.bpang.com> Message-ID: <20040305180553.GB25923@panix.com> On Fri, Mar 05, 2004 at 12:10:19PM -0500, bpang at bpang.com wrote: > > question: How can PEAR be regarded as [so] great if it causes such angst > for what might be considered routine tasks? Beats me why folks think PEAR is so hard. http://pear.php.net/manual/en/ is pretty clear. I know the DB docs are up to date and have several usage examples. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From jsiegel1 at optonline.net Fri Mar 5 13:06:55 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Fri, 05 Mar 2004 13:06:55 -0500 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <00b701c402d9$86532050$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> <73937DA0-6EC9-11D8-90EF-0003930D07F2@email.smith.edu> <00b701c402d9$86532050$6400a8c0@thinkpad> Message-ID: <4048C1BF.2070006@optonline.net> Can I use that as my tag line? Jeff ---------- -----BEGIN EMAIL STAMP ----- Version: 1.0.0 m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT -----END EMAIL STAMP ----- jon baer wrote: > That will be .38 please :-) > > -----BEGIN EMAIL STAMP ----- > Version: 1.0.0 > > m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT > m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT > m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT > m1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofTm1cr0$ofT > > -----END EMAIL STAMP ----- > > ----- Original Message ----- > From: "Aaron Fischer" > To: "NYPHP Talk" > Sent: Friday, March 05, 2004 12:20 PM > Subject: Re: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? > > > >>Unbelievable. Truly unbelievable. What an ass. >> >>-Aaron >> >>On Mar 5, 2004, at 12:11 PM, jon baer wrote: >> >> >>>LOL ... what in the world ... >>> >>>http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html >> >>_______________________________________________ >>talk mailing list >>talk at lists.nyphp.org >>http://lists.nyphp.org/mailman/listinfo/talk >> > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From chubbard at next-online.net Fri Mar 5 13:06:05 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Fri, 05 Mar 2004 10:06:05 -0800 Subject: [nycphp-talk] [ot] oh my god ... buy stamps to send email??? In-Reply-To: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> References: <005f01c402d4$e6e86a10$6400a8c0@thinkpad> Message-ID: <4048C18D.7050808@next-online.net> Mind you, if you'd read the article, you'd see that it isn't about money at all. It's more of a sophisticated (if somewhat lame) challenge response system. This isn't Bill or Microsoft's idea. This kind of idea has been floated a number of times. Implementing it would be horrifically difficult. And, oh, yeah, it wouldn't stop spam. It would, for a time, slow down how long it took the spammers to send out spam. But the system doesn't stop spam, just makes it more "expensive" in terms of CPU and bandwidth. And both CPU and bandwidth are getting cheaper. So... Is it a good idea? Not really. Is it feasible? No. Does it have anything to do with cash? No. Is there a financial impact? Yes, both for the spammer and the intended recipient. A hybrid system is a better choice. But they're not as sexy. Chris jon baer wrote: >LOL ... what in the world ... > >http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/index.html > >-snip- >NEW YORK (AP) -- If the U.S. Postal Service delivered mail for free, our >mailboxes would surely runneth over with more credit-card offers, >sweepstakes entries, and supermarket fliers. That's why we get so much junk >e-mail: It's essentially free to send. So Microsoft Corp. chairman Bill >Gates, among others, is now suggesting that we start buying "stamps" for >e-mail. >-snip- > >pgp key: http://www.jonbaer.net/jonbaer.asc >fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > > -- Chris Hubbard Sr Software Developer Next Online 425 563 4153 From danielc at analysisandsolutions.com Fri Mar 5 13:09:02 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 5 Mar 2004 13:09:02 -0500 Subject: [nycphp-talk] we need a PEAR book / db In-Reply-To: <006701c402d5$9ec114c0$6400a8c0@thinkpad> References: <006601c402d0$bb371960$8b01a8c0@DB> <.38.117.145.89.1078506619.squirrel@www.bpang.com> <006701c402d5$9ec114c0$6400a8c0@thinkpad> Message-ID: <20040305180902.GC25923@panix.com> Howdy Jon: On Fri, Mar 05, 2004 at 12:16:38PM -0500, jon baer wrote: > > much of the core PHP stuff seems to be useless (maybe) without its > surrounding plugins/extensions/and PEAR But if everything was built in, PHP would be a lot slower and bloated. The extensions allow users to pick and choose what they need in order to have the most efficient system possible. By the way, there is a movement to unify all of the database functions, which could ultimately obviate the need for PEAR DB, et al. Lata, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From Rafi.Sheikh at Ingenix.com Fri Mar 5 13:32:31 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Fri, 5 Mar 2004 12:32:31 -0600 Subject: [nycphp-talk] correct php modules not loaded Message-ID: Hi list. BASIC: apache 1.3.29, php 4.3.4, Mysql 1.3 on WIN2KPro ISSUE: php_info() shows that the extensions_dir points to a directory that does not exists (c:\php4), and since it is pointing somewhere where I could not find it, my modules (like gd) are not being loaded. WHAT HAVE I DONE SO FAR? I have made appropriate changes to php.ini and placed the whole php related components under C:\php. I have included C:\php in my System's Path. That does show in the info from php_info() I have stopped and restarted apache All related php dll files are under C:\php I have done search and there is NO other php.ini under any drive or dir except c:\php.ini (where it should be). Re-started the machine, and than restarted Apache, the entry in C:\php\php.ini is: extension_dir= "C:\php\extensions" ADDITIONAL INFO: In my apache httpd-conf file, I have the following entries: LoadModule php4_module c:/php/sapi/php4apache.dll AddModule mod_php4.c <<<< NOTE: I did a search on it and there is no mod_php4.c in my c drive. I am not sure what else to do. Any ideas are deeply appreciated. Rafi PS: Dan and Tim have helped me in the "what have I done so far" section. I don't seem to move any forward. -----Original Message----- From: talk-request at lists.nyphp.org [mailto:talk-request at lists.nyphp.org] Sent: Friday, March 05, 2004 10:58 AM To: talk at lists.nyphp.org Subject: talk Digest, Vol 10, Issue 9 Send talk mailing list submissions to talk at lists.nyphp.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.nyphp.org/mailman/listinfo/talk or, via email, send a message with subject or body 'help' to talk-request at lists.nyphp.org You can reach the person managing the list at talk-owner at lists.nyphp.org When replying, please edit your Subject line so it is more specific than "Re: Contents of talk digest..." Today's Topics: 1. Interesting php based search engine ranking package (DeWitt, Michael) 2. SEARCHING PDF DOCUMENTS WITH UNIX (SALMAN MAZHAR) 3. RE: SEARCHING PDF DOCUMENTS WITH UNIX (DeWitt, Michael) 4. Re: SEARCHING PDF DOCUMENTS WITH UNIX (Daniel Convissor) 5. RE: SEARCHING PDF DOCUMENTS WITH UNIX (DeWitt, Michael) 6. Re: SEARCHING PDF DOCUMENTS WITH UNIX (Daniel Convissor) 7. RE: SEARCHING PDF DOCUMENTS WITH UNIX (DeWitt, Michael) 8. we need a PEAR book (David Mintz) 9. Re: we need a PEAR book (Eric Rank) 10. RE: we need a PEAR book (David Sklar) 11. Re: we need a PEAR book (Dave Callaghan) 12. RE: we need a PEAR book (Chris Bielanski) ---------------------------------------------------------------------- Message: 1 Date: Thu, 4 Mar 2004 14:04:01 -0500 From: "DeWitt, Michael" Subject: [nycphp-talk] Interesting php based search engine ranking package To: "'NYPHP Talk'" Message-ID: Content-Type: text/plain I just downloaded and setup today a GPL package called phpSERA which performs search engine rankings on both an ad hoc and historical basis with graphing. You can find it here: http://phpsera.sourceforge.net/ So far it looks good and it takes about 5 minutes to setup. I have been looking for a package like this for a while and I figured others might be interested in it as well. If you want to check it out without getting your hands dirty, there is a live demo linked off the website and screen shots. Mike ------------------------------ Message: 2 Date: Thu, 04 Mar 2004 20:05:21 -0500 From: "SALMAN MAZHAR" Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX To: talk at lists.nyphp.org Message-ID: Content-Type: text/plain; format=flowed Hello, I was trying to search for strings in a pdf file that is on the unix system. I looked for other tools to search in pdf files but so far I have found none. Is there a way in Unix itself like the grep command or something else that can help me search for strings in pdf files? If anyone knows about it, then please kindly let me know. Thanks, Salman. _________________________________________________________________ Create a Job Alert on MSN Careers and enter for a chance to win $1000! http://msn.careerbuilder.com/promo/kaday.htm?siteid=CBMSN_1K&sc_extcmp=JS_JA Sweep_MSNHotm2 ------------------------------ Message: 3 Date: Thu, 4 Mar 2004 20:42:55 -0500 From: "DeWitt, Michael" Subject: RE: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX To: "'NYPHP Talk'" Message-ID: Content-Type: text/plain I am using xpdf to get text out of pdfs. You can get it here http://www.foolabs.com/xpdf/index.html. Mike > -----Original Message----- > From: SALMAN MAZHAR [SMTP:salmaz8347 at hotmail.com] > Sent: Thursday, March 04, 2004 8:05 PM > To: talk at lists.nyphp.org > Subject: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX > > Hello, > > I was trying to search for strings in a pdf file that is on the unix > system. > I looked for other tools to > search in pdf files but so far I have found none. Is there a way in Unix > itself like the grep command or something else that can help me search for > > strings in pdf files? > > If anyone knows about it, then please kindly let me know. > > Thanks, > Salman. > > _________________________________________________________________ > Create a Job Alert on MSN Careers and enter for a chance to win $1000! > http://msn.careerbuilder.com/promo/kaday.htm?siteid=CBMSN_1K&sc_extcmp=JS_ > JASweep_MSNHotm2 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 4 Date: Thu, 4 Mar 2004 21:12:19 -0500 From: Daniel Convissor Subject: Re: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX To: NYPHP Talk Message-ID: <20040305021219.GA28423 at panix.com> Content-Type: text/plain; charset=us-ascii On Thu, Mar 04, 2004 at 08:42:55PM -0500, DeWitt, Michael wrote: > I am using xpdf to get text out of pdfs. ... IF you've got X windows going. Let's see what Panix has... d> apropos pdf | grep text latex, elatex, lambda, pdflatex (1) - structured text formatting and typesetting pdftotext (1) - Portable Document Format (PDF) to text converter (version 2.02) That second one looks like it'll fit the bill. d> man pdftotext ... snip ... Pdftotext reads the PDF file, PDF-file, and writes a text file, text-file. If text-file is not specified, pdftotext converts file.pdf to file.txt. If text-file is '-', the text is sent to stdout. ... snip ... d> pdftotext afile.pdf - | grep stringicareabout Works like a charm. Enjoy, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 5 Date: Thu, 4 Mar 2004 21:17:35 -0500 From: "DeWitt, Michael" Subject: RE: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX To: "'NYPHP Talk'" Message-ID: Content-Type: text/plain Dan, Isn't pdftotext part of the xpdf package? Mike > -----Original Message----- > From: Daniel Convissor [SMTP:danielc at analysisandsolutions.com] > Sent: Thursday, March 04, 2004 9:12 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX > > On Thu, Mar 04, 2004 at 08:42:55PM -0500, DeWitt, Michael wrote: > > I am using xpdf to get text out of pdfs. > > ... IF you've got X windows going. > > Let's see what Panix has... > > d> apropos pdf | grep text > > latex, elatex, lambda, pdflatex (1) - structured text formatting and > typesetting > pdftotext (1) - Portable Document Format (PDF) to text converter > (version 2.02) > > That second one looks like it'll fit the bill. > > d> man pdftotext > ... snip ... > Pdftotext reads the PDF file, PDF-file, and writes a text > file, text-file. If text-file is not specified, pdftotext > converts file.pdf to file.txt. If text-file is '-', the > text is sent to stdout. > ... snip ... > > d> pdftotext afile.pdf - | grep stringicareabout > > Works like a charm. > > Enjoy, > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 6 Date: Thu, 4 Mar 2004 21:21:22 -0500 From: Daniel Convissor Subject: Re: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX To: NYPHP Talk Message-ID: <20040305022122.GA1082 at panix.com> Content-Type: text/plain; charset=us-ascii Howdy: On Thu, Mar 04, 2004 at 09:17:35PM -0500, DeWitt, Michael wrote: > > Isn't pdftotext part of the xpdf package? >From the man page, looks like it is. But one doesn't need to have xwindows running in order to use pdftotext. Seems like xpdf does. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 7 Date: Thu, 4 Mar 2004 21:28:40 -0500 From: "DeWitt, Michael" Subject: RE: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX To: "'NYPHP Talk'" Message-ID: Content-Type: text/plain Dan, Ha, that is funny, I didn't know there was a binary xpdf. I have never used it, just pdftotext. I am looking at the directory for xpdf and can see it now. xpdf seems nice - renders much faster than acrobat and looks fairly accurate. Mike > -----Original Message----- > From: Daniel Convissor [SMTP:danielc at analysisandsolutions.com] > Sent: Thursday, March 04, 2004 9:21 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] SEARCHING PDF DOCUMENTS WITH UNIX > > Howdy: > > On Thu, Mar 04, 2004 at 09:17:35PM -0500, DeWitt, Michael wrote: > > > > Isn't pdftotext part of the xpdf package? > > >From the man page, looks like it is. But one doesn't need to have > xwindows running in order to use pdftotext. Seems like xpdf does. > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 8 Date: Fri, 5 Mar 2004 10:44:10 -0500 (EST) From: David Mintz Subject: [nycphp-talk] we need a PEAR book To: NYPHP Talk Message-ID: Content-Type: TEXT/PLAIN; charset=US-ASCII I look forward to a nice fat heavy book about PEAR, preferably one with a cute furry creature on the cover. When it's available I'll whip out my credit card so fast it'll make your head spin. Even if it is out of date the moment it hits the shelves. I just felt like sharing that as I go nucking futs in my quest to learn to use some of these packages. Thanks for letting me vent (-: --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 ------------------------------ Message: 9 Date: Fri, 5 Mar 2004 10:41:38 -0600 From: "Eric Rank" Subject: Re: [nycphp-talk] we need a PEAR book To: "NYPHP Talk" Message-ID: <006601c402d0$bb371960$8b01a8c0 at DB> Content-Type: text/plain; charset="iso-8859-1" I second that. The other night I literally had to go for a walk around the block to cool off after spending a couple hours getting nowhere trying to learn DB_DataObject. Searching "DB_DataObject PEAR tutorial" in Google was of no help either. Doing that mostly brought up mirrors of the same docs found at pear.php.net Does anyone have good resources for this stuff? E. ----- Original Message ----- From: "David Mintz" To: "NYPHP Talk" Sent: Friday, March 05, 2004 9:44 AM Subject: [nycphp-talk] we need a PEAR book > > I look forward to a nice fat heavy book about PEAR, preferably one with a > cute furry creature on the cover. When it's available I'll whip out my > credit card so fast it'll make your head spin. Even if it is out of date > the moment it hits the shelves. > > I just felt like sharing that as I go nucking futs in my quest to learn to > use some of these packages. Thanks for letting me vent (-: > > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 10 Date: Fri, 5 Mar 2004 11:50:32 -0500 From: "David Sklar" Subject: RE: [nycphp-talk] we need a PEAR book To: "NYPHP Talk" Message-ID: Content-Type: text/plain; charset="us-ascii" David Mintz wrote: > I look forward to a nice fat heavy book about PEAR, preferably one > with a cute furry creature on the cover. When it's available I'll > whip out my credit card so fast it'll make your head spin. Even if it > is out of date the moment it hits the shelves. > > I just felt like sharing that as I go nucking futs in my quest to > learn to use some of these packages. Thanks for letting me vent (-: My book "Essential PHP Tools" covers PEAR DB, ADODB, HTML_QuickForm, Smarty, XML_Parser, XML_RPC, SOAP, SimpleXML, Mail, Mail_mime, Auth, Auth_HTTP, xdebug, apc, phpa, and mmcache. Those aren't all PEAR modules but many of them are. It should be out in a few weeks. --> http://www.amazon.com/exec/obidos/tg/detail/-/1590592808 David ------------------------------ Message: 11 Date: Fri, 05 Mar 2004 11:55:24 -0500 From: "Dave Callaghan" Subject: Re: [nycphp-talk] we need a PEAR book To: "NYPHP Talk" Message-ID: <20040305165524.176F157C004 at ws5-4.us4.outblaze.com> Content-Type: text/plain; charset="iso-8859-1" The only resource that I've ever found that actually works consistently is to actually read the code itself. This isn't a smart-assed RTFC comment, bcs I would knock you down to get a PEAR book. I LOVE good documentation and I feel the lack of it takes away from the quality of the application itself. But after repeatedly reading sparse tutorials or just getting NADA-doc dumps, I don't even watse my time anymore. There is good news when you go this route, though. First of all, PHP isn't Perl; you can read it even if you didn't write it. Secondly, there are often nice samples included with the package and the code is very clean. The package that finally took me over the edge was HTML_QuickForm_Controller. If you use and love HTML_QucikForm, which I do, and you make a lot of multi-page applications and wizards, which I do, this is a magnificent package. But can you get it to work? First, google around a bit. Get nice and frustrated. Now, go to the source and open the samples provided. You'll be up and running suprisingly quickly. So, I can't WAIT to get a good PEAR book. But in the meantime, I block off a chunk of time to read the code and any samples they may give me. In the end, its still quicker than rolling it yourself. But it isn't as quick as a nice reference would make it. > I second that. The other night I literally had to go for a walk around the > block to cool off after spending a couple hours getting nowhere trying to > learn DB_DataObject. Searching "DB_DataObject PEAR tutorial" in Google was > of no help either. Doing that mostly brought up mirrors of the same docs > found at pear.php.net > > Does anyone have good resources for this stuff? > > E. > > > > > ----- Original Message ----- > From: "David Mintz" > To: "NYPHP Talk" > Sent: Friday, March 05, 2004 9:44 AM > Subject: [nycphp-talk] we need a PEAR book > > > > > > I look forward to a nice fat heavy book about PEAR, preferably one with a > > cute furry creature on the cover. When it's available I'll whip out my > > credit card so fast it'll make your head spin. Even if it is out of date > > the moment it hits the shelves. > > > > I just felt like sharing that as I go nucking futs in my quest to learn to > > use some of these packages. Thanks for letting me vent (-: > > > > > > --- > > David Mintz > > http://davidmintz.org/ > > > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk -- ______________________________________________ Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox. Powered by Outblaze ------------------------------ Message: 12 Date: Fri, 5 Mar 2004 12:00:36 -0500 From: Chris Bielanski Subject: RE: [nycphp-talk] we need a PEAR book To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" So with all this thrashing and cursing about the lack of docs, how come nobody using (or learning to use) PEAR is signing on the the doc project? > -----Original Message----- > From: Dave Callaghan [mailto:dcallaghan at linuxmail.org] > Sent: Friday, March 05, 2004 11:55 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] we need a PEAR book > > > The only resource that I've ever found that actually works > consistently is to actually read the code itself. > > This isn't a smart-assed RTFC comment, bcs I would knock you > down to get a PEAR book. I LOVE good documentation and I feel > the lack of it takes away from the quality of the application itself. > > But after repeatedly reading sparse tutorials or just getting > NADA-doc dumps, I don't even watse my time anymore. There is > good news when you go this route, though. First of all, PHP > isn't Perl; you can read it even if you didn't write it. > Secondly, there are often nice samples included with the > package and the code is very clean. > > The package that finally took me over the edge was > HTML_QuickForm_Controller. If you use and love > HTML_QucikForm, which I do, and you make a lot of multi-page > applications and wizards, which I do, this is a magnificent package. > > But can you get it to work? > > First, google around a bit. Get nice and frustrated. Now, go > to the source and open the samples provided. You'll be up and > running suprisingly quickly. > > So, I can't WAIT to get a good PEAR book. But in the > meantime, I block off a chunk of time to read the code and > any samples they may give me. In the end, its still quicker > than rolling it yourself. But it isn't as quick as a nice > reference would make it. > > > > I second that. The other night I literally had to go for a > walk around the > > block to cool off after spending a couple hours getting > nowhere trying to > > learn DB_DataObject. Searching "DB_DataObject PEAR > tutorial" in Google was > > of no help either. Doing that mostly brought up mirrors of > the same docs > > found at pear.php.net > > > > Does anyone have good resources for this stuff? > > > > E. > > > > > > > > > > ----- Original Message ----- > > From: "David Mintz" > > To: "NYPHP Talk" > > Sent: Friday, March 05, 2004 9:44 AM > > Subject: [nycphp-talk] we need a PEAR book > > > > > > > > > > I look forward to a nice fat heavy book about PEAR, > preferably one with a > > > cute furry creature on the cover. When it's available > I'll whip out my > > > credit card so fast it'll make your head spin. Even if it > is out of date > > > the moment it hits the shelves. > > > > > > I just felt like sharing that as I go nucking futs in my > quest to learn to > > > use some of these packages. Thanks for letting me vent (-: > > > > > > > > > --- > > > David Mintz > > > http://davidmintz.org/ > > > > > > "Anybody else got a problem with Webistics?" -- > Sopranos 24:17 > > > _______________________________________________ > > > talk mailing list > > > talk at lists.nyphp.org > > > http://lists.nyphp.org/mailman/listinfo/talk > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > -- > ______________________________________________ > Check out the latest SMS services @ http://www.linuxmail.org > This allows you to send and receive SMS through your mailbox. > > Powered by Outblaze > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > ------------------------------ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk End of talk Digest, Vol 10, Issue 9 *********************************** This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From apcrain at fuse.net Fri Mar 5 14:03:19 2004 From: apcrain at fuse.net (Andy Crain) Date: Fri, 5 Mar 2004 14:03:19 -0500 Subject: [nycphp-talk] we need a PEAR book In-Reply-To: <20040305165524.176F157C004@ws5-4.us4.outblaze.com> Message-ID: <005601c402e4$8a81fbf0$650aa8c0@newslogiyn65wg> Reading the code/samples are your best bet, but there's a nice, actively maintained compendium of PEAR articles and tutorials at http://www.phpkitchen.com/staticpages/index.php?page=2003041204203962 Andy > -----Original Message----- > From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org] > On Behalf Of Dave Callaghan > Sent: Friday, March 05, 2004 11:55 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] we need a PEAR book > > The only resource that I've ever found that actually works consistently is > to actually read the code itself. > > This isn't a smart-assed RTFC comment, bcs I would knock you down to get a > PEAR book. I LOVE good documentation and I feel the lack of it takes away > from the quality of the application itself. > > But after repeatedly reading sparse tutorials or just getting NADA-doc > dumps, I don't even watse my time anymore. There is good news when you go > this route, though. First of all, PHP isn't Perl; you can read it even if > you didn't write it. Secondly, there are often nice samples included with > the package and the code is very clean. > > The package that finally took me over the edge was > HTML_QuickForm_Controller. If you use and love HTML_QucikForm, which I do, > and you make a lot of multi-page applications and wizards, which I do, > this is a magnificent package. > > But can you get it to work? > > First, google around a bit. Get nice and frustrated. Now, go to the source > and open the samples provided. You'll be up and running suprisingly > quickly. > > So, I can't WAIT to get a good PEAR book. But in the meantime, I block off > a chunk of time to read the code and any samples they may give me. In the > end, its still quicker than rolling it yourself. But it isn't as quick as > a nice reference would make it. > > > > I second that. The other night I literally had to go for a walk around > the > > block to cool off after spending a couple hours getting nowhere trying > to > > learn DB_DataObject. Searching "DB_DataObject PEAR tutorial" in Google > was > > of no help either. Doing that mostly brought up mirrors of the same docs > > found at pear.php.net > > > > Does anyone have good resources for this stuff? > > > > E. > > > > > > > > > > ----- Original Message ----- > > From: "David Mintz" > > To: "NYPHP Talk" > > Sent: Friday, March 05, 2004 9:44 AM > > Subject: [nycphp-talk] we need a PEAR book > > > > > > > > > > I look forward to a nice fat heavy book about PEAR, preferably one > with a > > > cute furry creature on the cover. When it's available I'll whip out my > > > credit card so fast it'll make your head spin. Even if it is out of > date > > > the moment it hits the shelves. > > > > > > I just felt like sharing that as I go nucking futs in my quest to > learn to > > > use some of these packages. Thanks for letting me vent (-: > > > > > > > > > --- > > > David Mintz > > > http://davidmintz.org/ > > > > > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > > > _______________________________________________ > > > talk mailing list > > > talk at lists.nyphp.org > > > http://lists.nyphp.org/mailman/listinfo/talk > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > -- > ______________________________________________ > Check out the latest SMS services @ http://www.linuxmail.org > This allows you to send and receive SMS through your mailbox. > > Powered by Outblaze > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From adam at trachtenberg.com Fri Mar 5 11:22:44 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Fri, 5 Mar 2004 11:22:44 -0500 (EST) Subject: [nycphp-talk] we need a PEAR book In-Reply-To: References: Message-ID: On Fri, 5 Mar 2004, David Mintz wrote: > I look forward to a nice fat heavy book about PEAR, preferably one with a > cute furry creature on the cover. When it's available I'll whip out my > credit card so fast it'll make your head spin. Even if it is out of date > the moment it hits the shelves. May I suggest: "Essential PHP Tools: Modules, Extensions, and Accelerators" by David Sklar? http://www.amazon.com/exec/obidos/ASIN/1590592808/trachtenberg-20/noref It's coming out this month. No cute furry creatures, but an excellent book nevertheless. Especially if you like ice cream. -adam PS: Disclaimer: I tech edited this book. -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From ashaw at iifwp.org Fri Mar 5 15:17:00 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Fri, 5 Mar 2004 15:17:00 -0500 Subject: [nycphp-talk] online password replacement Message-ID: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> Hi All, I wonder if anyone here has experience implementing a lost-password-recovery function on a login-based website. We're soon to be opening up our membership database to allow each individual to edit his or her own records. Naturally we have a login system in place, which our core staff is already using to access the database, but as of now any lost passwords would be replaced manually by the administrator. If we open it to hundreds of people that will be too much to handle, so I need to develop a way for people to do it themselves (probably using an email address on file). I'm sure I can create something that works, but I'm not confident yet to create something that both works and is fairly secure. I googled around but couldn't find fruitful keywords. Anybody have some recommendations on how best to handle this feature, or some place on the Web to look around? Thanks, Allen -- =========================================================== Allen Shaw ashaw at iifwp.org IIFWP Data and 914.631.1331 x.106 IT Services http://www.iifwp.org From dcech at phpwerx.net Fri Mar 5 15:27:55 2004 From: dcech at phpwerx.net (Dan Cech) Date: Fri, 05 Mar 2004 15:27:55 -0500 Subject: [nycphp-talk] online password replacement In-Reply-To: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> References: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> Message-ID: <4048E2CB.2040808@phpwerx.net> Allen Shaw wrote: > Hi All, > > I wonder if anyone here has experience implementing a lost-password-recovery > function on a login-based website. We're soon to be opening up our > membership database to allow each individual to edit his or her own records. > Naturally we have a login system in place, which our core staff is already > using to access the database, but as of now any lost passwords would be > replaced manually by the administrator. If we open it to hundreds of people > that will be too much to handle, so I need to develop a way for people to do > it themselves (probably using an email address on file). I'm sure I can > create something that works, but I'm not confident yet to create something > that both works and is fairly secure. > > I googled around but couldn't find fruitful keywords. Anybody have some > recommendations on how best to handle this feature, or some place on the Web > to look around? A fairly standard approach is to simply generate a new random password and send it to the email address you have on file. If you have additional data about your clients on file you may be able to implement a system which used that data to authenticate the client, either then allowing them to change their password online or request a new password be sent to their stored email address. Dan From chubbard at next-online.net Fri Mar 5 15:39:55 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Fri, 05 Mar 2004 12:39:55 -0800 Subject: [nycphp-talk] online password replacement In-Reply-To: <4048E2CB.2040808@phpwerx.net> References: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> <4048E2CB.2040808@phpwerx.net> Message-ID: <4048E59B.4060102@next-online.net> A better approach is: On a request to recover the password, Make sure the email address matches what is in the database, Then change the password in the database to some random value, Then send the user an email (using the email in the database) with a link to a page where the user can change the password. Make sure the emailed link can only be used once. If you send their password to them via email, it's in plain text and can be fairly easily intercepted. You can improve on the above by adding challenge questions (Mother's maiden name, What was the name of your high school, etc), but assumes you've gathered those questions/answers during the registration process. Chris Dan Cech wrote: > Allen Shaw wrote: > >> Hi All, >> >> I wonder if anyone here has experience implementing a >> lost-password-recovery >> function on a login-based website. We're soon to be opening up our >> membership database to allow each individual to edit his or her own >> records. >> Naturally we have a login system in place, which our core staff is >> already >> using to access the database, but as of now any lost passwords would be >> replaced manually by the administrator. If we open it to hundreds of >> people >> that will be too much to handle, so I need to develop a way for >> people to do >> it themselves (probably using an email address on file). I'm sure I can >> create something that works, but I'm not confident yet to create >> something >> that both works and is fairly secure. >> >> I googled around but couldn't find fruitful keywords. Anybody have some >> recommendations on how best to handle this feature, or some place on >> the Web >> to look around? > > > A fairly standard approach is to simply generate a new random password > and send it to the email address you have on file. > > If you have additional data about your clients on file you may be able > to implement a system which used that data to authenticate the client, > either then allowing them to change their password online or request a > new password be sent to their stored email address. > > Dan > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk -- Chris Hubbard Sr Software Developer Next Online 425 563 4153 From shiflett at php.net Fri Mar 5 15:43:11 2004 From: shiflett at php.net (Chris Shiflett) Date: Fri, 5 Mar 2004 12:43:11 -0800 (PST) Subject: [nycphp-talk] online password replacement In-Reply-To: <4048E2CB.2040808@phpwerx.net> Message-ID: <20040305204311.87563.qmail@web14310.mail.yahoo.com> --- Dan Cech wrote: > A fairly standard approach is to simply generate a new random password > and send it to the email address you have on file. You probably also want to have a unique link in the email (or some similar mechanism) that the user needs to visit in order to activate the new password. Otherwise, random people can reset your users' passwords, which is a hassle for them. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From dmintz at davidmintz.org Fri Mar 5 15:43:46 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 5 Mar 2004 15:43:46 -0500 (EST) Subject: [nycphp-talk] online password replacement In-Reply-To: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> References: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> Message-ID: I recently set up such a thing in the manner Dan Cech just described. I used the PEAR Auth package (speaking of PEAR again (-:) and the passwords are stored as md5 hashes, indecipherable even to the admin, so it wasn't optional, I had to use the technique of resetting and emailing them their new password. I stole this password generator from someplace, it seems Good Enough for these purposes, but if someone has a better one I'll steal that too. function create_passwd() { $i=0;$pwd=''; while ($i<9){ srand((double)microtime()*1000000); $num=rand(0,255); $txt=chr($num); if (eregi("^[a-z0-9]$", $txt)) { $pwd=$pwd . $txt; $i++; } } return $pwd; } On Fri, 5 Mar 2004, Allen Shaw wrote: > Hi All, > > I wonder if anyone here has experience implementing a lost-password-recovery > function on a login-based website. [snip] --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From agfische at email.smith.edu Fri Mar 5 16:14:22 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 16:14:22 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] Message-ID: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> I am working on a page right now that uses HTTP_REFERER to make sure that the user is coming from a specific page. It seems to be working pretty well except for one little hiccup involving the back button: Scenario: The user clicks from the referrer page to my page and is let in OK. When they are done they leave and go somewhere else. However, if they choose to hit the back button they are let into my page again. I would like to know how I can prevent this from happening? I tried playing around with meta tags like content no-cache and things of that sort to prevent the browser from storing in memory but it has not had the desired effect. So I'd be interested in some tips/pointers on how to prevent the back button being able to be used to get back into my page and also suggestions if there is a better way than http_referer to accomplish my goals of restricting access. Thanks, -Aaron From amiller at criticalmedia.biz Fri Mar 5 16:21:26 2004 From: amiller at criticalmedia.biz (Alan T. Miller) Date: Fri, 5 Mar 2004 14:21:26 -0700 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] References: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> Message-ID: <047201c402f7$d179bad0$640a0a0a@webdev> I have done something simular where I set a session variable to track where they initially came from the first time they hit the page. As for subsequent requests, if the session variable is set, I do not have to worry about it. Not sure though if this would fit your application though. Alan ----- Original Message ----- From: "Aaron Fischer" To: "NYPHP Talk" Sent: Friday, March 05, 2004 2:14 PM Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] > I am working on a page right now that uses HTTP_REFERER to make sure > that the user is coming from a specific page. It seems to be working > pretty well except for one little hiccup involving the back button: > > Scenario: > The user clicks from the referrer page to my page and is let in OK. > When they are done they leave and go somewhere else. However, if they > choose to hit the back button they are let into my page again. I would > like to know how I can prevent this from happening? > > I tried playing around with meta tags like content no-cache and things > of that sort to prevent the browser from storing in memory but it has > not had the desired effect. > > So I'd be interested in some tips/pointers on how to prevent the back > button being able to be used to get back into my page and also > suggestions if there is a better way than http_referer to accomplish my > goals of restricting access. > > Thanks, > > -Aaron > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From mitchy at spacemonkeylabs.com Fri Mar 5 16:25:47 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 05 Mar 2004 16:25:47 -0500 Subject: [nycphp-talk] online password replacement In-Reply-To: References: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> Message-ID: <4048F05B.2060802@spacemonkeylabs.com> David Mintz wrote: > I recently set up such a thing in the manner Dan Cech just described. I > used the PEAR Auth package (speaking of PEAR again (-:) and the passwords > are stored as md5 hashes, indecipherable even to the admin, so it wasn't > optional, I had to use the technique of resetting and emailing them their > new password. I stole this password generator from someplace, it seems > Good Enough for these purposes, but if someone has a better one I'll steal > that too. PEAR's Text_Password: http://pear.php.net/manual/en/package.text.php#package.text.text-password ;^) From agfische at email.smith.edu Fri Mar 5 16:33:51 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 16:33:51 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <047201c402f7$d179bad0$640a0a0a@webdev> References: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> <047201c402f7$d179bad0$640a0a0a@webdev> Message-ID: I don't have ownership of the referring page so I can't ask them to set a session variable. Maybe I could set one on my page that would do the trick. I'm thinking I could set it up so that if the session variable exists I won't let them back in. The only way they will be able to get back in is to go to the referring page, which is what I want. Does this sound like I'm on the right track? Either way, it looks like I may need to delve into the sessions areas of my php books to learn more! -Aaron On Mar 5, 2004, at 4:21 PM, Alan T. Miller wrote: > I have done something simular where I set a session variable to track > where > they initially came from the first time they hit the page. As for > subsequent > requests, if the session variable is set, I do not have to worry about > it. > Not sure though if this would fit your application though. > > Alan > > > > ----- Original Message ----- > From: "Aaron Fischer" > To: "NYPHP Talk" > Sent: Friday, March 05, 2004 2:14 PM > Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] > > >> I am working on a page right now that uses HTTP_REFERER to make sure >> that the user is coming from a specific page. It seems to be working >> pretty well except for one little hiccup involving the back button: >> >> Scenario: >> The user clicks from the referrer page to my page and is let in OK. >> When they are done they leave and go somewhere else. However, if they >> choose to hit the back button they are let into my page again. I >> would >> like to know how I can prevent this from happening? >> >> I tried playing around with meta tags like content no-cache and things >> of that sort to prevent the browser from storing in memory but it has >> not had the desired effect. >> >> So I'd be interested in some tips/pointers on how to prevent the back >> button being able to be used to get back into my page and also >> suggestions if there is a better way than http_referer to accomplish >> my >> goals of restricting access. >> >> Thanks, >> >> -Aaron >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From ashaw at iifwp.org Fri Mar 5 16:42:32 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Fri, 5 Mar 2004 16:42:32 -0500 Subject: [nycphp-talk] online password replacement References: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> Message-ID: <018101c402fa$c4275c90$6f01a8c0@iifwp.local> Okay, I'm thinking to do something like this: I need a 3-column table, something like this: CREATE TABLE `pwd_request` ( `requestid` int(11) NOT NULL auto_increment, `userid` int(11) NOT NULL default '', `pwd` varchar(32) NOT NULL default '', PRIMARY KEY (`requestid`) ) TYPE=MyISAM AUTO_INCREMENT=1; * user requests password replacement * password is reset to random value, which is stored in a new record, along with userid of this user * get pwd_request.requestid for that new record * using email address on file, a link like this is sent to the user: When the user accesses that given URL * password.php queries for a record in pwd_request matching on 3 fields * if record is found, delete that record and display form to receive new password (If no record is found, display error message and accept no changes. This way we prevent the link from being used twice.) * apply new password to user's actual record. The mechanics of this definitely make sense to me, and it seems safe enough. Thanks Dan, Chris, and others for your input. - Allen > --- Dan Cech wrote: > > A fairly standard approach is to simply generate a new random password > > and send it to the email address you have on file. > > You probably also want to have a unique link in the email (or some similar > mechanism) that the user needs to visit in order to activate the new > password. Otherwise, random people can reset your users' passwords, which > is a hassle for them. > > Chris From shiflett at php.net Fri Mar 5 17:08:48 2004 From: shiflett at php.net (Chris Shiflett) Date: Fri, 5 Mar 2004 14:08:48 -0800 (PST) Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> Message-ID: <20040305220848.181.qmail@web14310.mail.yahoo.com> --- Aaron Fischer wrote: > I am working on a page right now that uses HTTP_REFERER to make sure > that the user is coming from a specific page. It seems to be working > pretty well except for one little hiccup involving the back button: There are more problems with this approach than the one you've observed, but that is another discussion I suppose... > Scenario: > The user clicks from the referrer page to my page and is let in OK. > When they are done they leave and go somewhere else. However, if they > choose to hit the back button they are let into my page again. I would > like to know how I can prevent this from happening? With a standards-compliant browser, you shouldn't be able to. As a standards-conscious developer, you shouldn't want to. >From section 13.13 of RFC 2616: In particular history mechanisms SHOULD NOT try to show a semantically transparent view of the current state of a resource. Rather, a history mechanism is meant to show exactly what the user saw at the time when the resource was retrieved. Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From ashaw at iifwp.org Fri Mar 5 17:12:58 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Fri, 5 Mar 2004 17:12:58 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] References: <20040305220848.181.qmail@web14310.mail.yahoo.com> Message-ID: <03b301c402ff$04710bd0$6f01a8c0@iifwp.local> Chris, what you say is true, but I think Aaron would be okay to show them what they saw before (exactly what the user saw at the time when the resource was retrieved"). Seems like he's trying to prevent them from having the page reloaded with new information off the server. Isn't that a different thing? - Allen > With a standards-compliant browser, you shouldn't be able to. As a > standards-conscious developer, you shouldn't want to. > > >From section 13.13 of RFC 2616: > > In particular history mechanisms SHOULD NOT try to show a semantically > transparent view of the current state of a resource. Rather, a history > mechanism is meant to show exactly what the user saw at the time when > the resource was retrieved. > > Hope that helps. > > Chris From adam at trachtenberg.com Fri Mar 5 16:29:43 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Fri, 5 Mar 2004 16:29:43 -0500 (EST) Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> References: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> Message-ID: On Fri, 5 Mar 2004, Aaron Fischer wrote: > I am working on a page right now that uses HTTP_REFERER to make sure > that the user is coming from a specific page. It seems to be working > pretty well except for one little hiccup involving the back button: > > Scenario: > The user clicks from the referrer page to my page and is let in OK. > When they are done they leave and go somewhere else. However, if they > choose to hit the back button they are let into my page again. I would > like to know how I can prevent this from happening? I can't solve your specific problem, but HTTP_REFERER is really easy to fake, so don't be relying on this in general as a secure method of protection against anything or anyone. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From agfische at email.smith.edu Fri Mar 5 17:41:51 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 17:41:51 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <20040305220848.181.qmail@web14310.mail.yahoo.com> References: <20040305220848.181.qmail@web14310.mail.yahoo.com> Message-ID: <4B90E642-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> On Mar 5, 2004, at 5:08 PM, Chris Shiflett wrote: > --- Aaron Fischer wrote: >> I am working on a page right now that uses HTTP_REFERER to make sure >> that the user is coming from a specific page. It seems to be working >> pretty well except for one little hiccup involving the back button: > > There are more problems with this approach than the one you've > observed, > but that is another discussion I suppose... > I figured as much. :-) >> Scenario: >> The user clicks from the referrer page to my page and is let in OK. >> When they are done they leave and go somewhere else. However, if they >> choose to hit the back button they are let into my page again. I would >> like to know how I can prevent this from happening? > > With a standards-compliant browser, you shouldn't be able to. As a > standards-conscious developer, you shouldn't want to. > Can you clarify this? Are you saying that a standards-compliant browser should show me the page again regardless of what I do, and as a standards-conscious developer I should not try and restrict them from hitting back and seeing the page? >> From section 13.13 of RFC 2616: > > In particular history mechanisms SHOULD NOT try to show a > semantically > transparent view of the current state of a resource. Rather, a > history > mechanism is meant to show exactly what the user saw at the time > when > the resource was retrieved. > > Hope that helps. > > Chris Hhmmm, when considering pages that contain sensitive information it seems problematic to leave the history transparent. For example, if I am banking online and leave the banking site and then leave my computer unattended, I don't want someone else to be able to sit down and hit the back buttons or history buttons to see my private information. Of course, I wouldn't let that happen But, I am designing with the lowest common denominator in mind. That is, the user with the least amount of technical information and/or the greatest propensity to leave themselves vulnerable to such exploits. Isn't it my responsibility as a developer to do everything possible to protect the user's sensitive information from being viewed by parties other than themselves? -Aaron From agfische at email.smith.edu Fri Mar 5 17:44:12 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 17:44:12 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <03b301c402ff$04710bd0$6f01a8c0@iifwp.local> References: <20040305220848.181.qmail@web14310.mail.yahoo.com> <03b301c402ff$04710bd0$6f01a8c0@iifwp.local> Message-ID: <9FC42FFD-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> Actually, I am trying to restrict what they saw before, in case "they" is now a different user. -Aaron On Mar 5, 2004, at 5:12 PM, Allen Shaw wrote: > Chris, what you say is true, but I think Aaron would be okay to show > them > what they saw before (exactly what the user saw at the time when the > resource was retrieved"). Seems like he's trying to prevent them from > having the page reloaded with new information off the server. Isn't > that a > different thing? > > - Allen From ashaw at iifwp.org Fri Mar 5 17:44:48 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Fri, 5 Mar 2004 17:44:48 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] References: <20040305220848.181.qmail@web14310.mail.yahoo.com> <4B90E642-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> Message-ID: <03c001c40303$76c28020$6f01a8c0@iifwp.local> I'm interested to hear about this also. I've notice that on some sites, when a logged-in user chooses to log-out he can't back-button and get the most recent page, but he can back-button back to the page where he logged in, hit reload, and he's in. On some other sites, though, I have not been able to recreate this behavior (hotmail is an example). This seems much more secure. > Hhmmm, when considering pages that contain sensitive information it > seems problematic to leave the history transparent. For example, if I > am banking online and leave the banking site and then leave my computer > unattended, I don't want someone else to be able to sit down and hit > the back buttons or history buttons to see my private information. Of > course, I wouldn't let that happen But, I am designing with the lowest > common denominator in mind. That is, the user with the least amount of > technical information and/or the greatest propensity to leave > themselves vulnerable to such exploits. Isn't it my responsibility as > a developer to do everything possible to protect the user's sensitive > information from being viewed by parties other than themselves? > > -Aaron > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From ashaw at iifwp.org Fri Mar 5 17:45:27 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Fri, 5 Mar 2004 17:45:27 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] References: <20040305220848.181.qmail@web14310.mail.yahoo.com><03b301c402ff$04710bd0$6f01a8c0@iifwp.local> <9FC42FFD-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> Message-ID: <03c501c40303$8e279340$6f01a8c0@iifwp.local> Ah, okay, sorry about that, chief. ----- Original Message ----- From: "Aaron Fischer" To: "NYPHP Talk" Sent: Friday, March 05, 2004 5:44 PM Subject: Re: [nycphp-talk] using $_SERVER['HTTP_REFERER'] > Actually, I am trying to restrict what they saw before, in case "they" > is now a different user. > > -Aaron > > On Mar 5, 2004, at 5:12 PM, Allen Shaw wrote: > > > Chris, what you say is true, but I think Aaron would be okay to show > > them > > what they saw before (exactly what the user saw at the time when the > > resource was retrieved"). Seems like he's trying to prevent them from > > having the page reloaded with new information off the server. Isn't > > that a > > different thing? > > > > - Allen > From agfische at email.smith.edu Fri Mar 5 17:48:47 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 17:48:47 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: References: <12EB01FD-6EEA-11D8-9564-0003930D07F2@email.smith.edu> Message-ID: <43A84C96-6EF7-11D8-A82B-000A95AF225A@email.smith.edu> Thanks Adam, I would guess as much. In this specific instance I think it will be OK. It is extremely unlikely that there will be any motivation to fake it and trick the page into loading. However, for future use, and possibly for this one, can you give me some recommendations for what I should start reading up on when considering security? Perhaps the question is too broad? I would guess that sessions would be one area to explore. -Aaron On Mar 5, 2004, at 4:29 PM, Adam Maccabee Trachtenberg wrote: > >> I am working on a page right now that uses HTTP_REFERER to make sure >> that the user is coming from a specific page. It seems to be working >> pretty well except for one little hiccup involving the back button: >> >> Scenario: >> The user clicks from the referrer page to my page and is let in OK. >> When they are done they leave and go somewhere else. However, if they >> choose to hit the back button they are let into my page again. I >> would >> like to know how I can prevent this from happening? > > I can't solve your specific problem, but HTTP_REFERER is really easy > to fake, so don't be relying on this in general as a secure method of > protection against anything or anyone. > > -adam From agfische at email.smith.edu Fri Mar 5 17:53:39 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 5 Mar 2004 17:53:39 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <03c501c40303$8e279340$6f01a8c0@iifwp.local> References: <20040305220848.181.qmail@web14310.mail.yahoo.com><03b301c402ff$04710bd0$6f01a8c0@iifwp.local> <9FC42FFD-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> <03c501c40303$8e279340$6f01a8c0@iifwp.local> Message-ID: No worries amigo. :-) On Mar 5, 2004, at 5:45 PM, Allen Shaw wrote: > Ah, okay, sorry about that, chief. > > ----- Original Message ----- > From: "Aaron Fischer" > To: "NYPHP Talk" > Sent: Friday, March 05, 2004 5:44 PM > Subject: Re: [nycphp-talk] using $_SERVER['HTTP_REFERER'] > > >> Actually, I am trying to restrict what they saw before, in case "they" >> is now a different user. >> >> -Aaron >> >> On Mar 5, 2004, at 5:12 PM, Allen Shaw wrote: >> >>> Chris, what you say is true, but I think Aaron would be okay to show >>> them >>> what they saw before (exactly what the user saw at the time when the >>> resource was retrieved"). Seems like he's trying to prevent them >>> from >>> having the page reloaded with new information off the server. Isn't >>> that a >>> different thing? >>> >>> - Allen >> > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From felix at students.poly.edu Fri Mar 5 02:09:18 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Fri, 5 Mar 2004 02:09:18 -0500 Subject: [nycphp-talk] using $_SERVER['HTTP_REFERER'] In-Reply-To: <4B90E642-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> References: <20040305220848.181.qmail@web14310.mail.yahoo.com> <4B90E642-6EF6-11D8-A82B-000A95AF225A@email.smith.edu> Message-ID: <20040305020918.1d6e6473.felix@students.poly.edu> I think you are trying to come to a solution in the wrong way. First you should not ever rely on HTTP_REFERER because some browsers dont even choose to sent them or a proxy is stripping them so i would not have any of my app's logic rely on the REFERER header. Second you should not worry about sites that your appliation does not control. If you are not the guy who sent the user the html page so then it should not be up to you to decide if the user cannot go back to that page. I can see a case where its resonable to wipe the browsers history for your application only. I never had a needed to do this but here is a few ideas you may try. Some of them may not work. 1. Put your app in a popup , probably not a good idea. 2. Use javascript and manipulate the history object, but make sure you are nice and dont wipe the history you did not create. 3. Let all your application requests go through same url , maybe some browsers dont add a history for that. 4. Use 304 redirects because browsers wont add those to history. I am not sure where this would be useful though. -- felix[at]bebinary.com http://www.zaslavskiy.net/ From cahoyos at us.ibm.com Fri Mar 5 18:56:56 2004 From: cahoyos at us.ibm.com (Carlos A Hoyos) Date: Fri, 5 Mar 2004 18:56:56 -0500 Subject: [nycphp-talk] segmentation fault Message-ID: Has anyone encountered a segmentation fault before? Any hints on how to debug? I have a simple script that open a set of urls and saves them locally. This script is called through a fork on a page, and I noticed that very rarely the process died before finishing the download. After investigating a bit, I found out that calling the process from the command line (or through a web page) gave me a segmentation fault. I thought I could reproduce the problem (it was happening only with certain parameters) but when it does happen, it will abort execution without echoing anything, so debuging through echo statements did not working. I started commenting sections of the code and managed to narrow the problem to a call to file_get_contents (segmentation wouldn't happen with other urls, so I thought I had it), but even so, the problem doesn't happen all the time. I'm running PHP 4.3.1 Carlos Hoyos, Application Developer, ibm.com 1133 Westchester Ave, # 2e 524, White Plains, NY 10604 914.642.3569 | t/l 224.3569 cahoyos at us.ibm.com From faber at linuxnj.com Fri Mar 5 23:17:47 2004 From: faber at linuxnj.com (Faber Fedor) Date: Fri, 5 Mar 2004 23:17:47 -0500 Subject: [nycphp-talk] segmentation fault In-Reply-To: References: Message-ID: <20040306041747.GA10805@uranus.faber.nom> On Fri, Mar 05, 2004 at 06:56:56PM -0500, Carlos A Hoyos wrote: > > Has anyone encountered a segmentation fault before? Any hints on how to > debug? Remember, strace is your friend. It looks pretty daunting when you first run it, but if you have some programming background, e.g. this isn't your first program (or programming language) you can sort of figure out what the program was trying to do at the time. There's alot of stuff in the strace output that is Very Scary but ignore it. Something like this might help: strace -f -o /tmp/output_file /path/to/your/executable.php -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From tom at supertom.com Sat Mar 6 11:50:38 2004 From: tom at supertom.com (Tom) Date: Sat, 06 Mar 2004 11:50:38 -0500 Subject: [nycphp-talk] Recommend Email POP3 Class or code snippet In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87AA66F5@ehost011-1.exch011.intermedia.net> Message-ID: <0HU500AINY6F8D@mta9.srv.hcvlny.cv.net> Hans, I received this last weekend, but have been too busy to look at it. I'm certainly going to dive into it today - thanks again! Tom -----Original Message----- From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Hans Zaunere Sent: Saturday, February 28, 2004 12:39 AM To: NYPHP Talk Subject: RE: [nycphp-talk] Recommend Email POP3 Class or code snippet Hey Tom, > Looking for a recommendation for an email class to handle polling a > POP3 box. In the past, I've used the POP3 class on phpclasses.org > without issue, but I don't believe it handles attachments (I could be > wrong, just getting Speaking POP (or any email protocol) isn't really related to attachments. You could, for example, send HTTP packets over email if you really wanted to. In fact, you could send IP packets if you have nothing to do. > into this now), which is a definite requirement. I found another > class there called 'clsImap.php', which I quickly installed and tried > the test script with no luck (it handles POP3 in addition to IMAP, despite the name). > This one looks promising however, so I will research it further. > > However, what I am after is a recommendation from someone who has > actually done this (with attachments) and can recommend a reliable > class (or code > sample) that I should go with. For IMAP there's of course: http://us2.php.net/imap And for pop, phpclasses.org probably has you covered. I haven't had to speak POP myself, so I'm lucky. I have, however, had to parse email messages a lot, and this means MIME. So much so, I wrote my own parser, which is actually generic to MIME (http/email/etc). It's attached and I'd be happy for any feedback. I'm using it in production and all has been happy, but I'm always ready for patches, etc. H From dmintz at davidmintz.org Sat Mar 6 15:00:35 2004 From: dmintz at davidmintz.org (David Mintz) Date: Sat, 6 Mar 2004 15:00:35 -0500 (EST) Subject: [nycphp-talk] online password replacement In-Reply-To: <4048F05B.2060802@spacemonkeylabs.com> References: <011f01c402ee$d11d0af0$6f01a8c0@iifwp.local> <4048F05B.2060802@spacemonkeylabs.com> Message-ID: D'oh! You just know I stumbled across that package *after* I posted this. No good-but-naive deed goes unembarrassed, or something like that. On Fri, 5 Mar 2004, Mitch Pirtle wrote: > David Mintz wrote: > > > .... I stole this password generator from someplace, it seems > > Good Enough for these purposes, but if someone has a better one I'll steal > > that too. > > PEAR's Text_Password: > > http://pear.php.net/manual/en/package.text.php#package.text.text-password > > ;^) > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From jsiegel1 at optonline.net Sun Mar 7 08:37:36 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Sun, 07 Mar 2004 08:37:36 -0500 Subject: [nycphp-talk] mcrypt_decrypt- null bytes Message-ID: <404B25A0.4010104@optonline.net> When using mcrypt_decrypt, it seems to add null bytes when decrypting. The trim function gets rid of it but just wondering if the null bytes at the end is normal behavior. Jeff Siegel From southwell at dneba.com Sun Mar 7 10:49:19 2004 From: southwell at dneba.com (Michael Southwell) Date: Sun, 07 Mar 2004 10:49:19 -0500 Subject: [nycphp-talk] mcrypt_decrypt- null bytes In-Reply-To: <404B25A0.4010104@optonline.net> References: <404B25A0.4010104@optonline.net> Message-ID: <6.0.3.0.2.20040307104753.01e15448@mail.optonline.net> At 08:37 AM 3/7/2004, you wrote: >When using mcrypt_decrypt, it seems to add null bytes when decrypting. The >trim function gets rid of it but just wondering if the null bytes at the >end is normal behavior. wild guess: this has something to do with block mode: see function.mcrypt-enc-is-block-algorithm-mode.html Michael G. Southwell ================================= DNEBA Enterprises 81 South Road Bloomingdale, NJ 07403-1419 973/492-7873 (voice and fax) southwell at dneba.com http://www.dneba.com ====================================================== From jsiegel1 at optonline.net Sun Mar 7 11:51:48 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Sun, 07 Mar 2004 11:51:48 -0500 Subject: [nycphp-talk] mcrypt_decrypt- null bytes In-Reply-To: <6.0.3.0.2.20040307104753.01e15448@mail.optonline.net> References: <404B25A0.4010104@optonline.net> <6.0.3.0.2.20040307104753.01e15448@mail.optonline.net> Message-ID: <404B5324.7050506@optonline.net> You're on the right track. Found the following: http://us3.php.net/manual/en/function.mcrypt-generic.php It notes that: "The data is padded with "\0" to make sure the length of the data is n * blocksize." Jeff Michael Southwell wrote: > At 08:37 AM 3/7/2004, you wrote: > >> When using mcrypt_decrypt, it seems to add null bytes when decrypting. >> The trim function gets rid of it but just wondering if the null bytes >> at the end is normal behavior. > > > wild guess: this has something to do with block mode: see > function.mcrypt-enc-is-block-algorithm-mode.html > > > > Michael G. Southwell ================================= > DNEBA Enterprises > 81 South Road > Bloomingdale, NJ 07403-1419 > 973/492-7873 (voice and fax) > southwell at dneba.com > http://www.dneba.com > ====================================================== > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Sun Mar 7 11:53:42 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Sun, 07 Mar 2004 11:53:42 -0500 Subject: [nycphp-talk] mcrypt_decrypt- null bytes In-Reply-To: <6.0.3.0.2.20040307104753.01e15448@mail.optonline.net> References: <404B25A0.4010104@optonline.net> <6.0.3.0.2.20040307104753.01e15448@mail.optonline.net> Message-ID: <404B5396.5090407@optonline.net> Additionally, I'm base64_encoding the string and then serializing it before storing it in a database. Jeff --------- Michael Southwell wrote: > At 08:37 AM 3/7/2004, you wrote: > >> When using mcrypt_decrypt, it seems to add null bytes when decrypting. >> The trim function gets rid of it but just wondering if the null bytes >> at the end is normal behavior. > > > wild guess: this has something to do with block mode: see > function.mcrypt-enc-is-block-algorithm-mode.html > > > > Michael G. Southwell ================================= > DNEBA Enterprises > 81 South Road > Bloomingdale, NJ 07403-1419 > 973/492-7873 (voice and fax) > southwell at dneba.com > http://www.dneba.com > ====================================================== > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From natrindex at yahoo.com Sun Mar 7 13:52:25 2004 From: natrindex at yahoo.com (charlie wang) Date: Sun, 7 Mar 2004 10:52:25 -0800 (PST) Subject: [nycphp-talk] fopen() problem Message-ID: <20040307185225.29630.qmail@web13704.mail.yahoo.com> I used to have older version of php (4.1.2), fopen() and fread() were very smooth. Recently changed to 4.3.X. and comes this problem: fopen() some website, fread(), and then print(), only portion of the page could be presented, even tried my own site having same problem. I remember the new version has some problem for file handling, just can't find the info. Anyone can help please. Charlie __________________________________ Do you Yahoo!? Yahoo! Search - Find what you?re looking for faster http://search.yahoo.com From adam at trachtenberg.com Sun Mar 7 14:04:19 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Sun, 7 Mar 2004 14:04:19 -0500 (EST) Subject: [nycphp-talk] fopen() problem In-Reply-To: <20040307185225.29630.qmail@web13704.mail.yahoo.com> References: <20040307185225.29630.qmail@web13704.mail.yahoo.com> Message-ID: On Sun, 7 Mar 2004, charlie wang wrote: > I used to have older version of php (4.1.2), fopen() > and fread() were very smooth. Recently changed to > 4.3.X. and comes this problem: fopen() some website, > fread(), and then print(), only portion of the page > could be presented, even tried my own site having same > problem. I remember the new version has some problem > for file handling, just can't find the info. Anyone > can help please. You may want to try using file_get_contents() instead of fread(). It's more efficient and might solve the problem as a side effect. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From natrindex at yahoo.com Mon Mar 8 09:21:59 2004 From: natrindex at yahoo.com (charlie wang) Date: Mon, 8 Mar 2004 06:21:59 -0800 (PST) Subject: [nycphp-talk] fopen() problem In-Reply-To: Message-ID: <20040308142159.24560.qmail@web13704.mail.yahoo.com> Thanks. Adam: THat works great. Charlie --- Adam Maccabee Trachtenberg wrote: > On Sun, 7 Mar 2004, charlie wang wrote: > > > I used to have older version of php (4.1.2), > fopen() > > and fread() were very smooth. Recently changed to > > 4.3.X. and comes this problem: fopen() some > website, > > fread(), and then print(), only portion of the > page > > could be presented, even tried my own site having > same > > problem. I remember the new version has some > problem > > for file handling, just can't find the info. > Anyone > > can help please. > > You may want to try using file_get_contents() > instead of fread(). It's > more efficient and might solve the problem as a side > effect. > > -adam > > -- > adam at trachtenberg.com > author of o'reilly's php cookbook > avoid the holiday rush, buy your copy today! > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk __________________________________ Do you Yahoo!? Yahoo! Search - Find what you?re looking for faster http://search.yahoo.com From danielc at analysisandsolutions.com Mon Mar 8 23:38:43 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 8 Mar 2004 23:38:43 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #139 Message-ID: <20040309043843.GA22401@panix.com> PHPBB ViewTopic.PHP "postorder" Cross-Site Scripting Vulnera... http://www.securityfocus.com/bid/9765 Invision Power Board Search.PHP "st" SQL Injection Vulnerabi... http://www.securityfocus.com/bid/9766 Invision Power Board Multiple Cross-Site Scripting Vulnerabi... http://www.securityfocus.com/bid/9768 IGeneric Free Shopping Cart SQL Injection Vulnerability http://www.securityfocus.com/bid/9771 IGeneric Free Shopping Cart Cross-Site Scripting Vulnerabili... http://www.securityfocus.com/bid/9773 YABB SE Multiple Input Validation Vulnerabilities http://www.securityfocus.com/bid/9774 Magic Winmail Server LDapLib.PHP Remote Installation Path Di... http://www.securityfocus.com/bid/9786 ------------ 1. Feds: E-mail subpoena ruling hurts law enforcement By: Kevin Poulsen An appeals court refuses to reconsider a ruling that an overbroad subpoena for stored e-mail can qualify as a computer intrusion, despite a plea from the Justice Department to rethink the decision. http://www.securityfocus.com/news/8199 -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From ashaw at iifwp.org Tue Mar 9 14:40:22 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Tue, 9 Mar 2004 14:40:22 -0500 Subject: [nycphp-talk] var_dump says "&object(myobj)(10)" Message-ID: <003a01c4060e$5cea8a40$6f01a8c0@iifwp.local> Debugging a little, looking at results of var_dump($_SESSION), and noticed this mysterious (to me) thing: With register_globals=off, the object $myobj is listed with an ampersand, like so: ["_SESSION"]=> array(1) { ["myobj"]=> object(myclass)(14) { .... etc. ... With register_globals=on, the ampersand goes missing, like so: ["_SESSION"]=> array(1) { ["myobj"]=> object(myclass)(14) { .... etc. ... Can anyone tell me what that ampersand is? (Googling for "var_dump ampersand", etc. is getting me little help...) Thanks, Al -- =========================================================== Allen Shaw ashaw at iifwp.org IIFWP Data and 914.631.1331 x.106 IT Services http://www.iifwp.org From danielc at analysisandsolutions.com Tue Mar 9 14:52:09 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 9 Mar 2004 14:52:09 -0500 Subject: [nycphp-talk] var_dump says "&object(myobj)(10)" In-Reply-To: <003a01c4060e$5cea8a40$6f01a8c0@iifwp.local> References: <003a01c4060e$5cea8a40$6f01a8c0@iifwp.local> Message-ID: <20040309195208.GA7716@panix.com> On Tue, Mar 09, 2004 at 02:40:22PM -0500, Allen Shaw wrote: > > With register_globals=off, the object $myobj is listed with an ampersand, > like so: They both contained the same output. > Can anyone tell me what that ampersand is? Ampersands refer to references. Example: Output: array(3) { ["a"]=> &string(3) "one" ["b"]=> &string(3) "one" ["c"]=> string(5) "three" } array(3) { ["a"]=> &string(3) "two" ["b"]=> &string(3) "two" ["c"]=> string(5) "three" } Notice how I changed the value of b by changing the value of a. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From ashaw at iifwp.org Tue Mar 9 15:15:17 2004 From: ashaw at iifwp.org (Allen Shaw) Date: Tue, 9 Mar 2004 15:15:17 -0500 Subject: [nycphp-talk] var_dump says "&object(myobj)(10)" References: <003a01c4060e$5cea8a40$6f01a8c0@iifwp.local> <20040309195208.GA7716@panix.com> Message-ID: <003f01c40613$401ec480$6f01a8c0@iifwp.local> Thanks. Actually, I thought it was something like that, but without knowing more, do you have any guess as to why changing register_globals would affect whether it gets added as a reference or not? ----- Original Message ----- From: "Daniel Convissor" To: "NYPHP Talk" Sent: Tuesday, March 09, 2004 2:52 PM Subject: Re: [nycphp-talk] var_dump says "&object(myobj)(10)" > On Tue, Mar 09, 2004 at 02:40:22PM -0500, Allen Shaw wrote: > > > > With register_globals=off, the object $myobj is listed with an ampersand, > > like so: > > They both contained the same output. > > > > Can anyone tell me what that ampersand is? > > Ampersands refer to references. Example: > > $x['a'] = 'one'; > $x['b'] =& $x['a']; > $x['c'] = 'three'; > > var_dump($x); > > $x['a'] = 'two'; > > var_dump($x); > ?> > > Output: > > array(3) { > ["a"]=> > &string(3) "one" > ["b"]=> > &string(3) "one" > ["c"]=> > string(5) "three" > } > array(3) { > ["a"]=> > &string(3) "two" > ["b"]=> > &string(3) "two" > ["c"]=> > string(5) "three" > } > > Notice how I changed the value of b by changing the value of a. > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From Cbielanski at inta.org Tue Mar 9 16:42:01 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Tue, 9 Mar 2004 16:42:01 -0500 Subject: [nycphp-talk] var_dump says "&object(myobj)(10)" Message-ID: I'll toss in a guess - but it's complete speculation: With register_globals turned on, the values all get put in a single massive symbol table (or heap, or whatever) and all values are references. With it turned off, the symbol table can be managed more effectively, and you get values in place of those references. Of course, I could be way off - I can envision what's going on but my lack of scholastic training in the subject serves to limit my vocabulary. > -----Original Message----- > From: Allen Shaw [mailto:ashaw at iifwp.org] > Sent: Tuesday, March 09, 2004 3:15 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] var_dump says "&object(myobj)(10)" > > > Thanks. Actually, I thought it was something like that, but > without knowing > more, do you have any guess as to why changing > register_globals would affect > whether it gets added as a reference or not? > > ----- Original Message ----- > From: "Daniel Convissor" > To: "NYPHP Talk" > Sent: Tuesday, March 09, 2004 2:52 PM > Subject: Re: [nycphp-talk] var_dump says "&object(myobj)(10)" > > > > On Tue, Mar 09, 2004 at 02:40:22PM -0500, Allen Shaw wrote: > > > > > > With register_globals=off, the object $myobj is listed with an > ampersand, > > > like so: > > > > They both contained the same output. > > > > > > > Can anyone tell me what that ampersand is? > > > > Ampersands refer to references. Example: > > > > > $x['a'] = 'one'; > > $x['b'] =& $x['a']; > > $x['c'] = 'three'; > > > > var_dump($x); > > > > $x['a'] = 'two'; > > > > var_dump($x); > > ?> > > > > Output: > > > > array(3) { > > ["a"]=> > > &string(3) "one" > > ["b"]=> > > &string(3) "one" > > ["c"]=> > > string(5) "three" > > } > > array(3) { > > ["a"]=> > > &string(3) "two" > > ["b"]=> > > &string(3) "two" > > ["c"]=> > > string(5) "three" > > } > > > > Notice how I changed the value of b by changing the value of a. > > > > --Dan > > > > -- > > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > > data intensive web and database programming > > http://www.AnalysisAndSolutions.com/ > > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Tue Mar 9 17:33:10 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 9 Mar 2004 17:33:10 -0500 Subject: [nycphp-talk] windows98 source code ... Message-ID: <001b01c40626$8062a990$6400a8c0@thinkpad> someone forwarded this along to me ... Windows '98 source code /* TOP SECRET Microsoft(c) Code Project: Chicago(tm) Projected release-date: Summer 1998 */ #include "win31.h" #include "win95.h" #include "evenmore.h" #include "oldstuff.h" #include "billrulz.h" #define INSTALL = HARD char make_prog_look_big[1600000]; void main() { while(!CRASHED) { display_copyright_message(); display_bill_rules_message(); do_nothing_loop(); if (first_time_installation) { make_50_megabyte_swapfile(); do_nothing_loop(); totally_screw_up_HPFS_file_system(); search_and_destroy_the_rest_of_OS/2(); hang_system(); } write_something(anything); display_copyright_message(); do_nothing_loop(); do_some_stuff(); if (still_not_crashed) { display_copyright_message(); do_nothing_loop(); basically_run_windows_3.1(); do_nothing_loop(); do_nothing_loop(); } } if (detect_cache()) disable_cache(); if (fast_cpu()) { set_wait_states(lots); set_mouse(speed, very_slow); set_mouse(action, jumpy); set_mouse(reaction, sometimes); } /* printf("Welcome to Windows 3.11"); */ /* printf("Welcome to Windows 95"); */ printf("Welcome to Windows 98"); if (system_ok()) crash(to_dos_prompt); else system_memory = open("a:\swp0001.swp", O_CREATE); while(something) { sleep(5); get_user_input(); sleep(5); act_on_user_input(); sleep(5); } create_general_protection_fault(); } pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 From danielc at analysisandsolutions.com Tue Mar 9 22:56:43 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 9 Mar 2004 22:56:43 -0500 Subject: [nycphp-talk] How the Open-Source World Plans to Smack Down Microsoft, and Oracle, and ... Message-ID: <20040310035642.GA6727@panix.com> Hi Folks: Thought the following article might be of interest... Open-source software is popping up everywhere, from PCs and cellphones to giant corporate and government systems. Today the biggest challenge confronting virtually every major software maker is chillingly simple: How do you compete with programs that can be had free? http://www.fortune.com/fortune/technology/articles/0,15114,588422,00.html --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From dmintz at davidmintz.org Wed Mar 10 14:29:01 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 10 Mar 2004 14:29:01 -0500 (EST) Subject: [nycphp-talk] windows98 source code ... In-Reply-To: <001b01c40626$8062a990$6400a8c0@thinkpad> References: <001b01c40626$8062a990$6400a8c0@thinkpad> Message-ID: Heh! So that's how they do it. Reminds me of an anecdote. While re-organizing my home office the other day, and trying like hell to throw away useless crap despite my pack-rat nature, I came across a CD containing --- Windows 98! Reflexively, I tried to think of an excuse to keep it. After meditating on this question for two seconds I threw it in the trash. On Tue, 9 Mar 2004, jon baer wrote: > someone forwarded this along to me ... > > Windows '98 source code > > /* > TOP SECRET Microsoft(c) Code > Project: Chicago(tm) > Projected release-date: Summer 1998 > */ > > #include "win31.h" > #include "win95.h" > #include "evenmore.h" > #include "oldstuff.h" > #include "billrulz.h" > #define INSTALL = HARD > > char make_prog_look_big[1600000]; > > void main() > { > while(!CRASHED) > { > display_copyright_message(); > display_bill_rules_message(); > do_nothing_loop(); --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From dmintz at davidmintz.org Wed Mar 10 17:08:43 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 10 Mar 2004 17:08:43 -0500 (EST) Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: References: <001b01c40626$8062a990$6400a8c0@thinkpad> Message-ID: This isn't the sexiest and most thrilling of topics, but I'm just curious. When you guys store 10 digit phone numbers in a MySQL database, generally speaking, how do you do it -- data type, width, format? Do you strip all the non-digits so as to make them format-agnostic, and reformat them at fetch time? Or do you enforce a format like (xxx) xxx-xxxx so they'll all be consistent? Do you keep a separate column for an optional extension, or allow enough width for "(xxx) xxx-xxxx Ext.xxxx" ? Hey you in the back of the room, stop snoring. Thanks, --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From mitchy at spacemonkeylabs.com Wed Mar 10 17:14:49 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 10 Mar 2004 17:14:49 -0500 Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: References: <001b01c40626$8062a990$6400a8c0@thinkpad> Message-ID: <404F9359.5070404@spacemonkeylabs.com> David Mintz wrote: >This isn't the sexiest and most thrilling of topics, but I'm just curious. > >When you guys store 10 digit phone numbers in a MySQL database, generally >speaking, how do you do it -- data type, width, format? Do you strip all >the non-digits so as to make them format-agnostic, and reformat them at >fetch time? Or do you enforce a format like (xxx) xxx-xxxx so they'll all >be consistent? Do you keep a separate column for an optional extension, or >allow enough width for "(xxx) xxx-xxxx Ext.xxxx" ? > >Hey you in the back of the room, stop snoring. > > (snaps head up) Hey who what the... Oh. I used to break them up as separate fields, but that can get messy as soon as you go international. Since then I store: area_code prefix suffix extension ..and get the country code from their address. If no address, then you need to get that too. In the 30 or so countries I've targeted with weblications, I've never seen an alpha character in use, unless you count stuff like 1-800-big-blob or something like that. By using PEAR's HTML_QuickForm, it is pretty easy to ensure you are only getting numeric data - and providing helpful messages too. (puts head back down) From dmintz at davidmintz.org Wed Mar 10 17:37:52 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 10 Mar 2004 17:37:52 -0500 (EST) Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: <404F9359.5070404@spacemonkeylabs.com> References: <001b01c40626$8062a990$6400a8c0@thinkpad> <404F9359.5070404@spacemonkeylabs.com> Message-ID: Jeez I'm awful sorry to disturb you again but... you do store them as string types, right? If they were actually numeric in the data layer (as opposed to the form input) and there were a leading zero somewhere it sounds like it could get ugly. PS I am loving that QuickForm, oh yesssssss. On Wed, 10 Mar 2004, Mitch Pirtle wrote: > David Mintz wrote: > >Hey you in the back of the room, stop snoring. > > > > > (snaps head up) Hey who what the... Oh. > > [...] By using PEAR's > HTML_QuickForm, it is pretty easy to ensure you are only getting numeric > data - and providing helpful messages too. > --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From faber at linuxnj.com Wed Mar 10 17:43:10 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 10 Mar 2004 17:43:10 -0500 Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: References: <001b01c40626$8062a990$6400a8c0@thinkpad> <404F9359.5070404@spacemonkeylabs.com> Message-ID: <20040310224310.GB22513@uranus.faber.nom> On Wed, Mar 10, 2004 at 05:37:52PM -0500, David Mintz wrote: > > Jeez I'm awful sorry to disturb you again but... you do store them as > string types, right? If they were actually numeric in the data layer (as > opposed to the form input) and there were a leading zero somewhere it > sounds like it could get ugly. I've always used the argument that two pieces of data are numeric if you can add (subtract, etc.) them together and get another number. Since you can't do that with phone numbers (or social security number, etc.), they are not numbers. > PS I am loving that QuickForm, oh yesssssss. I've got it bookmarked and am waiting for a quiet weekend to come along... -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From mitchy at spacemonkeylabs.com Wed Mar 10 17:57:32 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 10 Mar 2004 17:57:32 -0500 Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: References: <001b01c40626$8062a990$6400a8c0@thinkpad> <404F9359.5070404@spacemonkeylabs.com> Message-ID: <404F9D5C.3050100@spacemonkeylabs.com> David Mintz wrote: >Jeez I'm awful sorry to disturb you again but... you do store them as >string types, right? If they were actually numeric in the data layer (as >opposed to the form input) and there were a leading zero somewhere it >sounds like it could get ugly. > (snaps head up) Uh, er, oh yeah, that's what I meant. Using QuickForm you can guaranteee getting nothing but numeric input, but you cannot store it in the database as integers because of that reason - but the solution varies depending upon what database you are working with. Safest to store as char data, unless you want to get funky. Speaking of funky, I remember once learning how to create my own user-defined datatypes by inheriting classes of other types for PostgreSQL, but I can't remember the exact sequence of magic incantations... [sound of ruffling pages] Oh, you could store the numbers individually in an array, yuck. Oh, here's the ditty on PG's user defined types: http://www.postgresql.org/docs/7.4/interactive/xtypes.html ZZzzzzzzzzzzzzzzz... From jsiegel1 at optonline.net Wed Mar 10 18:35:29 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 10 Mar 2004 18:35:29 -0500 Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: References: <001b01c40626$8062a990$6400a8c0@thinkpad> <404F9359.5070404@spacemonkeylabs.com> Message-ID: <404FA641.8060300@optonline.net> I believe that the storing of the phone numbers would fall under the "display agnostic" theory as noted in the PHundamentals article on storing and retrieving data. Besides, by storing just the numbers (as strings, of course) means you can display it using hyphens or with parens or whatever may be needed. Jeff Siegel ---------------- David Mintz wrote: > Jeez I'm awful sorry to disturb you again but... you do store them as > string types, right? If they were actually numeric in the data layer (as > opposed to the form input) and there were a leading zero somewhere it > sounds like it could get ugly. > > PS I am loving that QuickForm, oh yesssssss. > > On Wed, 10 Mar 2004, Mitch Pirtle wrote: > > >>David Mintz wrote: >> >>>Hey you in the back of the room, stop snoring. >>> >>> >> >>(snaps head up) Hey who what the... Oh. >> >>[...] By using PEAR's >>HTML_QuickForm, it is pretty easy to ensure you are only getting numeric >>data - and providing helpful messages too. >> > > > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From shiflett at php.net Wed Mar 10 18:47:01 2004 From: shiflett at php.net (Chris Shiflett) Date: Wed, 10 Mar 2004 15:47:01 -0800 (PST) Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: <404FA641.8060300@optonline.net> Message-ID: <20040310234701.37375.qmail@web14307.mail.yahoo.com> --- Jeff Siegel wrote: > I believe that the storing of the phone numbers would fall under the > "display agnostic" theory as noted in the PHundamentals article on > storing and retrieving data. Yeah, although there's the theoretical problem of leading zeroes. However, as long as it's a number in the US, you can be sure that no such number exists. In fact, I often check for valid area codes in my data filtering logic. I'm not as certain about international numbers, but I'm sure you can find a definitive list. You could also store this data separately, since it's not really part of the phone number itself. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From shiflett at php.net Wed Mar 10 18:51:13 2004 From: shiflett at php.net (Chris Shiflett) Date: Wed, 10 Mar 2004 15:51:13 -0800 (PST) Subject: [nycphp-talk] storing phone numbers in MySQL In-Reply-To: <20040310234701.37375.qmail@web14307.mail.yahoo.com> Message-ID: <20040310235113.26654.qmail@web14310.mail.yahoo.com> --- Chris Shiflett wrote: > Yeah, although there's the theoretical problem of leading zeroes. I should have mentioned that this only exists if you're using an int field to store the number, which isn't what I do. I was just following along with the conversation. :-) I would go with using a varchar field and storing only the data, as Jeff suggested. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From felix at students.poly.edu Wed Mar 10 00:07:17 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Wed, 10 Mar 2004 00:07:17 -0500 Subject: [nycphp-talk] What do people use to analyze web applications user's behaviour ? Message-ID: <20040310000717.11ce0966.felix@students.poly.edu> I am interested in more then just webalizer that just shows popular page hits. Basicaly I like to analize how people are navigating around an application in order to improve usability. What are some solutions people prefer to do this ? What are tools that are useful for this ? -- felix[at]bebinary.com http://www.zaslavskiy.net/ From felix at students.poly.edu Thu Mar 11 00:37:30 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Thu, 11 Mar 2004 00:37:30 -0500 Subject: [nycphp-talk] What do people use to analyze web applications user's behaviour ? In-Reply-To: <20040310000717.11ce0966.felix@students.poly.edu> References: <20040310000717.11ce0966.felix@students.poly.edu> Message-ID: <20040311003730.121f7d41.felix@students.poly.edu> Sorry for screwed up time again. -- felix[at]bebinary.com http://www.zaslavskiy.net/ From mwithington at PLMresearch.com Thu Mar 11 00:46:16 2004 From: mwithington at PLMresearch.com (Mark L. Withington) Date: Thu, 11 Mar 2004 00:46:16 -0500 Subject: [nycphp-talk] What do people use to analyze web applications user'sbehaviour ? In-Reply-To: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358982F69@network.PLMresearch.com> Message-ID: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358916802@network.PLMresearch.com> Further to you quest for web analytics, you might want to look into phpOpenTracker ( http://www.phpopentracker.de/ ). I think this is the kind of stuff you're looking for. -------------------------- Mark L. Withington PLMresearch "eBusiness for the Midsize Enterprise" PO Box 1354 Plymouth, MA 02362 o: 800-310-3992 f: 508-746-4973 v: 508-746-2383 m: 508-801-0181 http://www.PLMresearch.com Netscape/AOL/MSN IM: PLMresearch mwithington at plmresearch.com Public Key: http://www.PLMresearch.com/keys/MLW_public_key.asc Calendar: http://www.plmresearch.com/calendar.php -----Original Message----- From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org]On Behalf Of felix zaslavskiy Sent: Wednesday, March 10, 2004 12:07 AM To: talk at lists.nyphp.org Subject: [nycphp-talk] What do people use to analyze web applications user'sbehaviour ? I am interested in more then just webalizer that just shows popular page hits. Basicaly I like to analize how people are navigating around an application in order to improve usability. What are some solutions people prefer to do this ? What are tools that are useful for this ? -- felix[at]bebinary.com http://www.zaslavskiy.net/ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From felix at students.poly.edu Thu Mar 11 00:52:23 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Thu, 11 Mar 2004 00:52:23 -0500 Subject: [nycphp-talk] What do people use to analyze web applications user'sbehaviour ? In-Reply-To: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358916802@network.PLMresearch.com> References: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358982F69@network.PLMresearch.com> <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358916802@network.PLMresearch.com> Message-ID: <20040311005223.5757ce1d.felix@students.poly.edu> > Further to you quest for web analytics, you might want to look into > phpOpenTracker ( http://www.phpopentracker.de/ ). I think this is the > kind of stuff you're looking for. I found that through freshmeat.net already. I had not had a chance to evaluate it yet. Have people used this? Are there any other apps in this category ? not neccessarily have to be php From mwithington at PLMresearch.com Thu Mar 11 00:54:33 2004 From: mwithington at PLMresearch.com (Mark L. Withington) Date: Thu, 11 Mar 2004 00:54:33 -0500 Subject: [nycphp-talk] What do people use to analyze web applicationsuser'sbehaviour ? In-Reply-To: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358982F72@network.PLMresearch.com> Message-ID: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358916805@network.PLMresearch.com> There's a nice article in this month's php|architect that describes it. -------------------------- Mark L. Withington PLMresearch "eBusiness for the Midsize Enterprise" PO Box 1354 Plymouth, MA 02362 o: 800-310-3992 f: 508-746-4973 v: 508-746-2383 m: 508-801-0181 http://www.PLMresearch.com Netscape/AOL/MSN IM: PLMresearch mwithington at plmresearch.com Public Key: http://www.PLMresearch.com/keys/MLW_public_key.asc Calendar: http://www.plmresearch.com/calendar.php -----Original Message----- From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org]On Behalf Of felix zaslavskiy Sent: Thursday, March 11, 2004 12:52 AM To: NYPHP Talk Subject: Re: [nycphp-talk] What do people use to analyze web applicationsuser'sbehaviour ? > Further to you quest for web analytics, you might want to look into > phpOpenTracker ( http://www.phpopentracker.de/ ). I think this is the > kind of stuff you're looking for. I found that through freshmeat.net already. I had not had a chance to evaluate it yet. Have people used this? Are there any other apps in this category ? not neccessarily have to be php _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From yury at heavenspa.com Thu Mar 11 09:28:09 2004 From: yury at heavenspa.com (yury at heavenspa.com) Date: Thu, 11 Mar 2004 09:28:09 -0500 Subject: [nycphp-talk] What do people use to analyze web applicationsuser'sbehaviour ? References: <1F3CD8DDFB6A9B4C9B8DD06E4A7DE358982F69@network.PLMresearch.com><1F3CD8DDFB6A9B4C9B8DD06E4A7DE358916802@network.PLMresearch.com> <20040311005223.5757ce1d.felix@students.poly.edu> Message-ID: <005b01c40775$140f1f80$0400a8c0@heavenspanyc> I use Awstats & webtrends... both work fine. ciao yury ----- Original Message ----- From: "felix zaslavskiy" To: "NYPHP Talk" Sent: Thursday, March 11, 2004 12:52 AM Subject: Re: [nycphp-talk] What do people use to analyze web applicationsuser'sbehaviour ? > > > > Further to you quest for web analytics, you might want to look into > > phpOpenTracker ( http://www.phpopentracker.de/ ). I think this is the > > kind of stuff you're looking for. > > I found that through freshmeat.net already. I had not had a chance to > evaluate it yet. Have people used this? > > Are there any other apps in this category ? not neccessarily have to be > php > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Thu Mar 11 10:31:42 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Thu, 11 Mar 2004 10:31:42 -0500 Subject: [nycphp-talk] Random record from MySQL Message-ID: <4050865E.8090803@optonline.net> How can I pull a record at random from a MySQL table? Jeff Siegel From tom at supertom.com Thu Mar 11 10:34:50 2004 From: tom at supertom.com (tom at supertom.com) Date: Thu, 11 Mar 2004 10:34:50 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <4050865E.8090803@optonline.net> Message-ID: Jeff, Try: SELECT * FROM table_name ORDER BY RAND( ) LIMIT 0 , 1 Tom www.liphp.org *************************************************** What's Tom listening to right now? Find out here: http://www.supertom.com/current_track.php -----Original Message----- From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org]On Behalf Of Jeff Siegel Sent: Thursday, March 11, 2004 10:32 AM To: NYPHP Talk Subject: [nycphp-talk] Random record from MySQL How can I pull a record at random from a MySQL table? Jeff Siegel _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk From nyphp at ph1l.de Thu Mar 11 10:42:34 2004 From: nyphp at ph1l.de (nyphp at ph1l.de) Date: Thu, 11 Mar 2004 16:42:34 +0100 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <4050865E.8090803@optonline.net> Message-ID: <20040311154234.95776A8602@virtu.nyphp.org> Hello, as far as i know there isn't a random function within mysql3 or mysql4. You might create a random value using a php function and use this value as index for retrieving a record. Phil > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Jeff Siegel > Sent: Thursday, March 11, 2004 4:32 PM > To: NYPHP Talk > Subject: [nycphp-talk] Random record from MySQL > > How can I pull a record at random from a MySQL table? > > Jeff Siegel > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > From henry at beewh.com Thu Mar 11 07:42:26 2004 From: henry at beewh.com (Henry Ponce) Date: Thu, 11 Mar 2004 12:42:26 +0000 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <4050865E.8090803@optonline.net> References: <4050865E.8090803@optonline.net> Message-ID: <200403111242.26158.henry@beewh.com> Jeff: read this: http://forums.devshed.com/archive/t-2095 Henry From nyphp at ph1l.de Thu Mar 11 10:45:24 2004 From: nyphp at ph1l.de (Philipp Stader) Date: Thu, 11 Mar 2004 16:45:24 +0100 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: Message-ID: <20040311154526.1AA89A8602@virtu.nyphp.org> > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of tom at supertom.com > Sent: Thursday, March 11, 2004 4:35 PM > To: NYPHP Talk > Subject: RE: [nycphp-talk] Random record from MySQL > > Jeff, > > Try: > > SELECT * FROM table_name ORDER BY RAND( ) LIMIT 0 , 1 > > Tom > www.liphp.org > Ha! I didn't know rand() yet. The use here is very interesting. I'll try this one my own when i have need for some randomness again. Phil > > > *************************************************** > What's Tom listening to right now? Find out here: > http://www.supertom.com/current_track.php > > > > > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org]On Behalf Of Jeff Siegel > Sent: Thursday, March 11, 2004 10:32 AM > To: NYPHP Talk > Subject: [nycphp-talk] Random record from MySQL > > > How can I pull a record at random from a MySQL table? > > Jeff Siegel > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > From jsiegel1 at optonline.net Thu Mar 11 10:53:26 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Thu, 11 Mar 2004 10:53:26 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: References: Message-ID: <40508B76.6050207@optonline.net> Boy...that was easy enough. Jeff tom at supertom.com wrote: > Jeff, > > Try: > > SELECT * FROM table_name ORDER BY RAND( ) LIMIT 0 , 1 > > Tom > www.liphp.org > > > > > *************************************************** > What's Tom listening to right now? Find out here: > http://www.supertom.com/current_track.php > > > > > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org]On Behalf Of Jeff Siegel > Sent: Thursday, March 11, 2004 10:32 AM > To: NYPHP Talk > Subject: [nycphp-talk] Random record from MySQL > > > How can I pull a record at random from a MySQL table? > > Jeff Siegel > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From lists at prusak.com Thu Mar 11 11:07:09 2004 From: lists at prusak.com (Ophir Prusak) Date: Thu, 11 Mar 2004 11:07:09 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: References: Message-ID: <40508EAD.8080800@prusak.com> I've never seen this solution before. Very simple. I wondering though about the efficiency of this solution. It seems to me that this assigns a random value to each row and then orders by that row. Does the DB do a full table scan using this method? If yes, this would be a very inefficient method for very large tables. Ophir tom at supertom.com wrote: >Jeff, > >Try: > >SELECT * FROM table_name ORDER BY RAND( ) LIMIT 0 , 1 > >Tom >www.liphp.org > > > > >*************************************************** >What's Tom listening to right now? Find out here: >http://www.supertom.com/current_track.php > > > > >-----Original Message----- >From: talk-bounces at lists.nyphp.org >[mailto:talk-bounces at lists.nyphp.org]On Behalf Of Jeff Siegel >Sent: Thursday, March 11, 2004 10:32 AM >To: NYPHP Talk >Subject: [nycphp-talk] Random record from MySQL > > >How can I pull a record at random from a MySQL table? > >Jeff Siegel > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > > From sklar at sklar.com Thu Mar 11 11:19:52 2004 From: sklar at sklar.com (David Sklar) Date: Thu, 11 Mar 2004 11:19:52 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <40508EAD.8080800@prusak.com> References: <40508EAD.8080800@prusak.com> Message-ID: <405091A8.2000302@sklar.com> Ophir Prusak wrote: > > I've never seen this solution before. Very simple. > I wondering though about the efficiency of this solution. > > It seems to me that this assigns a random value to each row and then > orders by that row. > Does the DB do a full table scan using this method? > > If yes, this would be a very inefficient method for very large tables. It is inefficient if you are retrieving the whole table ordered by RAND(), but with the LIMIT clause, the table scan is short-circuited after one row is found. So, SELECT * FROM table ORDER BY RAND() can be slow if there are a lot of rows in the table, but SELECT * FROM table ORDER BY RAND() LIMIT 1 is OK. David From nyphp at enobrev.com Thu Mar 11 11:29:32 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Thu, 11 Mar 2004 11:29:32 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <40508EAD.8080800@prusak.com> Message-ID: Not sure of the efficiency of rand, but I've been using it for a while.. Very useful. Another way you could do it is to generate a random number from 0 to the record count and use a limit query. Mark > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Ophir Prusak > Sent: Thursday, March 11, 2004 11:07 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Random record from MySQL > > > I've never seen this solution before. Very simple. > I wondering though about the efficiency of this solution. > > It seems to me that this assigns a random value to each row > and then orders by that row. > Does the DB do a full table scan using this method? > > If yes, this would be a very inefficient method for very large tables. > > Ophir > > > tom at supertom.com wrote: > > >Jeff, > > > >Try: > > > >SELECT * FROM table_name ORDER BY RAND( ) LIMIT 0 , 1 > > > >Tom > >www.liphp.org > > > > > > > > > >*************************************************** > >What's Tom listening to right now? Find out here: > >http://www.supertom.com/current_track.php > > > > > > > > > >-----Original Message----- > >From: talk-bounces at lists.nyphp.org > >[mailto:talk-bounces at lists.nyphp.org]On Behalf Of Jeff Siegel > >Sent: Thursday, March 11, 2004 10:32 AM > >To: NYPHP Talk > >Subject: [nycphp-talk] Random record from MySQL > > > > > >How can I pull a record at random from a MySQL table? > > > >Jeff Siegel > > > >_______________________________________________ > >talk mailing list > >talk at lists.nyphp.org > >http://lists.nyphp.org/mailman/listinfo/talk > > > >_______________________________________________ > >talk mailing list > >talk at lists.nyphp.org > >http://lists.nyphp.org/mailman/listinfo/talk > > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > > From lists at prusak.com Thu Mar 11 12:52:17 2004 From: lists at prusak.com (Ophir Prusak) Date: Thu, 11 Mar 2004 12:52:17 -0500 Subject: [nycphp-talk] Random record from MySQL Message-ID: <4050A751.2070908@prusak.com> I hear what you're saying, but I'm still not convinced. Any select query with an ORDER BY clause requires the database to do some sorting before returning results. I did a quick Google search and found this thread on the subject: http://lists.mysql.com/mysql/161338 The short answer is that if you're doing this for a table with a very large number of rows, there are more efficient ways than ORDER BY RAND(). Read the above thread for details. Ophir David Sklar wrote: > Ophir Prusak wrote: > >> >> I've never seen this solution before. Very simple. >> I wondering though about the efficiency of this solution. >> >> It seems to me that this assigns a random value to each row and then >> orders by that row. >> Does the DB do a full table scan using this method? >> >> If yes, this would be a very inefficient method for very large tables. > > > > It is inefficient if you are retrieving the whole table ordered by > RAND(), but with the LIMIT clause, the table scan is short-circuited > after one row is found. So, > > SELECT * FROM table ORDER BY RAND() > > can be slow if there are a lot of rows in the table, but > > SELECT * FROM table ORDER BY RAND() LIMIT 1 > > is OK. > > David > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From jsiegel1 at optonline.net Thu Mar 11 13:07:57 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Thu, 11 Mar 2004 13:07:57 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <405091A8.2000302@sklar.com> References: <40508EAD.8080800@prusak.com> <405091A8.2000302@sklar.com> Message-ID: <4050AAFD.5030609@optonline.net> I'll definitely use the LIMIT clause. After all, I only need one record. In addition, I'll have some parameters in a where clause so that if it comes back with a previously used record (I'm tracking that info)...I'll rerun/regenerate the query. Probably just do it in a loop and then exit out of the loop once I've found an unused record. Jeff ----- David Sklar wrote: > Ophir Prusak wrote: > >> >> I've never seen this solution before. Very simple. >> I wondering though about the efficiency of this solution. >> >> It seems to me that this assigns a random value to each row and then >> orders by that row. >> Does the DB do a full table scan using this method? >> >> If yes, this would be a very inefficient method for very large tables. > > > It is inefficient if you are retrieving the whole table ordered by > RAND(), but with the LIMIT clause, the table scan is short-circuited > after one row is found. So, > > SELECT * FROM table ORDER BY RAND() > > can be slow if there are a lot of rows in the table, but > > SELECT * FROM table ORDER BY RAND() LIMIT 1 > > is OK. > > David > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Thu Mar 11 13:21:02 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Thu, 11 Mar 2004 13:21:02 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <4050A751.2070908@prusak.com> References: <4050A751.2070908@prusak.com> Message-ID: <4050AE0E.70704@optonline.net> Thanks for pointing this out. Definitely food for thought. Jeff ==== Ophir Prusak wrote: > I hear what you're saying, but I'm still not convinced. > > Any select query with an ORDER BY clause requires the database to do > some sorting before returning results. > > I did a quick Google search and found this thread on the subject: > http://lists.mysql.com/mysql/161338 > > The short answer is that if you're doing this for a table with a very > large number of rows, there are more efficient ways than ORDER BY RAND(). > Read the above thread for details. > > Ophir > > > David Sklar wrote: > >> Ophir Prusak wrote: >> >>> >>> I've never seen this solution before. Very simple. >>> I wondering though about the efficiency of this solution. >>> >>> It seems to me that this assigns a random value to each row and then >>> orders by that row. >>> Does the DB do a full table scan using this method? >>> >>> If yes, this would be a very inefficient method for very large tables. >> >> >> >> >> It is inefficient if you are retrieving the whole table ordered by >> RAND(), but with the LIMIT clause, the table scan is short-circuited >> after one row is found. So, >> >> SELECT * FROM table ORDER BY RAND() >> >> can be slow if there are a lot of rows in the table, but >> >> SELECT * FROM table ORDER BY RAND() LIMIT 1 >> >> is OK. >> >> David >> >> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From dcech at phpwerx.net Thu Mar 11 13:42:07 2004 From: dcech at phpwerx.net (Dan Cech) Date: Thu, 11 Mar 2004 13:42:07 -0500 Subject: [nycphp-talk] Random record from MySQL In-Reply-To: <4050AAFD.5030609@optonline.net> References: <40508EAD.8080800@prusak.com> <405091A8.2000302@sklar.com> <4050AAFD.5030609@optonline.net> Message-ID: <4050B2FF.9040709@phpwerx.net> Jeff Siegel wrote: > I'll definitely use the LIMIT clause. After all, I only need one record. > In addition, I'll have some parameters in a where clause so that if it > comes back with a previously used record (I'm tracking that info)...I'll > rerun/regenerate the query. Probably just do it in a loop and then exit > out of the loop once I've found an unused record. Another method would be to add an extra column to the table to track the number of times each record has been used, then you could do the following: SELECT count(*) FROM mytable WHERE times_used=0; then use that result in a call to mt_rand to get a random offset: $random_offset = mt_rand (0, $max - 1); and grab the row with: $row = SELECT * FROM mytable WHERE times_used=0 LIMIT $random_offset, 1; Then update the table with the id from the row: UPDATE mytable SET times_used=times_used+1 WHERE id_column=$id; Honestly I can't tell you if there is an advantage to this method over the simple: SELECT * FROM mytable WHERE times_used=0 ORDER BY RAND() LIMIT 1; but I would be very interested to see how it worked out, especially with regards to how each solution scaled with the number of rows in the table. Note: for either of these solutions to be efficient the times_used column would have to be indexed. Dan > > Jeff > ----- > > David Sklar wrote: > >> Ophir Prusak wrote: >> >>> >>> I've never seen this solution before. Very simple. >>> I wondering though about the efficiency of this solution. >>> >>> It seems to me that this assigns a random value to each row and then >>> orders by that row. >>> Does the DB do a full table scan using this method? >>> >>> If yes, this would be a very inefficient method for very large tables. >> >> >> >> It is inefficient if you are retrieving the whole table ordered by >> RAND(), but with the LIMIT clause, the table scan is short-circuited >> after one row is found. So, >> >> SELECT * FROM table ORDER BY RAND() >> >> can be slow if there are a lot of rows in the table, but >> >> SELECT * FROM table ORDER BY RAND() LIMIT 1 >> >> is OK. >> >> David >> >> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From evan.heller at alum.rpi.edu Wed Mar 10 17:22:55 2004 From: evan.heller at alum.rpi.edu (Evan Heller) Date: Wed, 10 Mar 2004 17:22:55 -0500 Subject: [nycphp-talk] OT - IDE Raid cards Message-ID: <003701c406ee$3db435a0$6501a8c0@palacenew> Hi: I'm looking for opinions on what IDE raid cards are good performers and cost wise what is suggested. I'm looking to do simple mirroring and the ability to have 4 or more drives. Yes, I understand IDE raid is not as good as SCSI raid at the moment and I do use SCSI raid for my primary systems, but I would like to implement an IDE raid for backup purposes. I currently use a scsi perc 3 card with 128 megs of memory so I'm used to the feature set of a card of that type. So what do you guys recommend? Please list features/cost . Thanks a bunch -Evan From Cbielanski at inta.org Thu Mar 11 14:51:46 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Thu, 11 Mar 2004 14:51:46 -0500 Subject: [nycphp-talk] OT - IDE Raid cards Message-ID: Everyone I know that has needed this functionality in a moderate- to low-cost solution goes with Promise100 controllers and multiple identical drives of their own liking, though most end up being Western Digital. ~C > -----Original Message----- > From: Evan Heller [mailto:evan.heller at alum.rpi.edu] > Sent: Wednesday, March 10, 2004 5:23 PM > To: evan.heller at alum.rpi.edu > Subject: [nycphp-talk] OT - IDE Raid cards > > > Hi: > > I'm looking for opinions on what IDE raid cards are good > performers and cost > wise what is suggested. I'm looking to do simple mirroring > and the ability > to have 4 or more drives. Yes, I understand IDE raid is not > as good as SCSI > raid at the moment and I do use SCSI raid for my primary > systems, but I > would like to implement an IDE raid for backup purposes. I > currently use a > scsi perc 3 card with 128 megs of memory so I'm used to the > feature set of a > card of that type. > > So what do you guys recommend? Please list features/cost . > Thanks a bunch > > -Evan > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > >From hans not junk at nyphp.com Thu Mar 11 14:50:48 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id A5BC3A8602 for ; Thu, 11 Mar 2004 14:50:48 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Thu, 11 Mar 2004 11:50:22 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87EB35CD at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Wow, Microsoft Thread-Index: AcQHomJQ3k3VrBdtRtaUTUa7S33YPw== From: "Hans Zaunere" To: "NYPHP Talk" Subject: [nycphp-talk] Wow, Microsoft X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Mar 2004 19:50:49 -0000 Go to http://office.microsoft.com and see front and center "What is PHP" Actually a fair article, considering Microsoft isn't making money from PHP - and in fact losing. H From Cbielanski at inta.org Thu Mar 11 14:55:33 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Thu, 11 Mar 2004 14:55:33 -0500 Subject: OT - [nycphp-talk] Wow, Microsoft Message-ID: Gee. Thanks Micro$oft for telling me "Warning: You are viewing this page with an unsupported Web browser. This Web site works best with Microsoft Internet Explorer 5.01 or later or Netscape Navigator 6.0 or later" hehehe... firebird! > -----Original Message----- > From: Hans Zaunere [mailto:hans not junk at nyphp.com] > Sent: Thursday, March 11, 2004 2:50 PM > To: NYPHP Talk > Subject: [nycphp-talk] Wow, Microsoft > > > > Go to http://office.microsoft.com and see front and center > "What is PHP" > > Actually a fair article, considering Microsoft isn't making money from > PHP - and in fact losing. > > H > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From amiller at criticalmedia.biz Thu Mar 11 15:58:42 2004 From: amiller at criticalmedia.biz (Alan T. Miller) Date: Thu, 11 Mar 2004 12:58:42 -0800 Subject: [nycphp-talk] OT - IDE Raid cards References: Message-ID: <00bd01c407ab$a2e8bbe0$6f0a0a0a@webdev> I do not reccomend the Promise Controller if you plan to run Linux. I got stuck with two machines that had a built in promise IDE RAID controller and ended up having to disable the onborad promise controllerse and go with software RAID because they do not support the latest linux kernels. If you do not mind running outdated kernels with security problems, than perhaps the promise controller will be fine. If you are a concerned linux admin, than it is best to steer clear of the promise RAID controller all together. Alan ----- Original Message ----- From: "Chris Bielanski" To: "'NYPHP Talk'" Sent: Thursday, March 11, 2004 11:51 AM Subject: RE: [nycphp-talk] OT - IDE Raid cards > Everyone I know that has needed this functionality in a moderate- to > low-cost solution goes with Promise100 controllers and multiple identical > drives of their own liking, though most end up being Western Digital. > ~C > > > -----Original Message----- > > From: Evan Heller [mailto:evan.heller at alum.rpi.edu] > > Sent: Wednesday, March 10, 2004 5:23 PM > > To: evan.heller at alum.rpi.edu > > Subject: [nycphp-talk] OT - IDE Raid cards > > > > > > Hi: > > > > I'm looking for opinions on what IDE raid cards are good > > performers and cost > > wise what is suggested. I'm looking to do simple mirroring > > and the ability > > to have 4 or more drives. Yes, I understand IDE raid is not > > as good as SCSI > > raid at the moment and I do use SCSI raid for my primary > > systems, but I > > would like to implement an IDE raid for backup purposes. I > > currently use a > > scsi perc 3 card with 128 megs of memory so I'm used to the > > feature set of a > > card of that type. > > > > So what do you guys recommend? Please list features/cost . > > Thanks a bunch > > > > -Evan > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From crisscott at netzero.com Thu Mar 11 15:05:41 2004 From: crisscott at netzero.com (Scott Mattocks) Date: Thu, 11 Mar 2004 15:05:41 -0500 Subject: OT - [nycphp-talk] Wow, Microsoft In-Reply-To: References: Message-ID: <4050C695.5030303@netzero.com> "ASP.NET applications are based on a robust Object Oriented Programming (OOP) paradigm rather than a scripting paradigm. This allows for more advanced OOP features, such as inheritance, encapsulation, and reflection." I wish php had these kinds of things. :) Scott Mattocks From jonbaer at jonbaer.net Thu Mar 11 15:09:19 2004 From: jonbaer at jonbaer.net (jon baer) Date: Thu, 11 Mar 2004 15:09:19 -0500 Subject: [nycphp-talk] Wow, Microsoft References: <41EE526EC2D3C74286415780D3BA9F87EB35CD@ehost011-1.exch011.intermedia.net> Message-ID: <003601c407a4$bcf350b0$6400a8c0@thinkpad> I dunno seems they are making it seem like PHP sucks and is bad because it does not work "well" with FrontPage and they suck the reading in from using to PHP to downloading the .Net framework at no cost ... Also its a misprint: "With PHP, there is no concept of private, public, or protected functions in classes as well as in the overloading." Someone should send Bill a copy of PHP5 :-) - Jon ----- Original Message ----- From: "Hans Zaunere" To: "NYPHP Talk" Sent: Thursday, March 11, 2004 2:50 PM Subject: [nycphp-talk] Wow, Microsoft Go to http://office.microsoft.com and see front and center "What is PHP" Actually a fair article, considering Microsoft isn't making money from PHP - and in fact losing. From hanulec at hanulec.com Thu Mar 11 15:11:44 2004 From: hanulec at hanulec.com (Michael Hanulec) Date: Thu, 11 Mar 2004 15:11:44 -0500 (EST) Subject: [nycphp-talk] OT - IDE Raid cards In-Reply-To: <003701c406ee$3db435a0$6501a8c0@palacenew> References: <003701c406ee$3db435a0$6501a8c0@palacenew> Message-ID: OK Solution: 3Ware Escalade 7506 4 Port or 8 Port for IDE drives - Slower than Linux software mirror - Poor overall RAID stability, upon initializing the RAID for the first time, the RAID will re-initialize itself upon your first data write to the disk. Better Solution: Adaptec Serial ATA Raid 2410 (4 port) for 2810 (8 port) - Better performance than 3Ware - Better overall RAID stability -mike -- hanulec at hanulec.com cell: 858.518.2647 && 516.410.4478 https://secure.hanulec.com EFnet irc && aol im: hanulec On Wed, 10 Mar 2004, Evan Heller wrote: > Hi: > > I'm looking for opinions on what IDE raid cards are good performers and cost > wise what is suggested. I'm looking to do simple mirroring and the ability > to have 4 or more drives. Yes, I understand IDE raid is not as good as SCSI > raid at the moment and I do use SCSI raid for my primary systems, but I > would like to implement an IDE raid for backup purposes. I currently use a > scsi perc 3 card with 128 megs of memory so I'm used to the feature set of a > card of that type. > > So what do you guys recommend? Please list features/cost . Thanks a bunch > > -Evan > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > > From bpang at bpang.com Thu Mar 11 15:13:59 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Thu, 11 Mar 2004 15:13:59 -0500 (EST) Subject: OT - [nycphp-talk] Wow, Microsoft In-Reply-To: References: Message-ID: <.38.117.145.89.1079036039.squirrel@www.bpang.com> "Warning: You are viewing this page with an unsupported Web browser. This Web site works best with Microsoft Internet Explorer 5.01 or later or Netscape Navigator 6.0 or later. Click here for more information on supported browsers." and with Mozilla 1.5... maybe it's time to upgrade to 1.6!!!! HA! > Gee. Thanks Micro$oft for telling me > "Warning: You are viewing this page with an unsupported Web browser. This > Web site works best with Microsoft Internet Explorer 5.01 or later or > Netscape Navigator 6.0 or later" > > hehehe... firebird! >>http://office.microsoft.com From dcech at phpwerx.net Thu Mar 11 15:24:13 2004 From: dcech at phpwerx.net (Dan Cech) Date: Thu, 11 Mar 2004 15:24:13 -0500 Subject: [nycphp-talk] OT - IDE Raid cards In-Reply-To: <00bd01c407ab$a2e8bbe0$6f0a0a0a@webdev> References: <00bd01c407ab$a2e8bbe0$6f0a0a0a@webdev> Message-ID: <4050CAED.4090003@phpwerx.net> Personally I have had a love/hate relationship with RAID. I purchased one of the first ever mainboards with onboard RAID, an ABIT KA7-100 which was using a Highpoint (HPT370) chip, and 2 of then then top of the line 20GB WD drives. Unfortunately for me, I never managed to get it to work properly, and in the end gave up on RAID for a while. My latest experience was with the Promise FasTrak SX4000, which at the time I set it up was the latest and greatest in IDE RAID. I cannot say enough good things about this card, or the Western Digital J series (in my case WD800JB) drives. I put 256MB of RAM in the card and built a RAID 5 array for a total of 240Gb of storage space. Unfortunately my machine was using a no-name 300W PSU which couldn't handle the load of the 4 Western Digitals, plus another 2 non-RAID drives, etc and was having serious power issues. The result of this was that every few days the RAID would drop a drive and have to be rebuilt, this occurred 4 or 5 times before I figured out what was going on and replaces the PSU, since then the machine and RAID have been solid as a rock (and at no time did I lose any data). I know there are sources available for at least some of the promise cards, and I believe the 2.6 kernel has support for the TX4 family of cards. I haven't used the Promise cards under linux myself so YMMV. The adaptec cards pointed out by Michael Hanulec look like they might be just the ticket though. I would definitely recommend you go with the WD drives, I have been very happy with them in the past and they seem to work well in RAID setups. Dan Alan T. Miller wrote: > I do not reccomend the Promise Controller if you plan to run Linux. I got > stuck with two machines that had a built in promise IDE RAID controller and > ended up having to disable the onborad promise controllerse and go with > software RAID because they do not support the latest linux kernels. If you > do not mind running outdated kernels with security problems, than perhaps > the promise controller will be fine. If you are a concerned linux admin, > than it is best to steer clear of the promise RAID controller all together. > > Alan > > > > ----- Original Message ----- > From: "Chris Bielanski" > To: "'NYPHP Talk'" > Sent: Thursday, March 11, 2004 11:51 AM > Subject: RE: [nycphp-talk] OT - IDE Raid cards > > > >>Everyone I know that has needed this functionality in a moderate- to >>low-cost solution goes with Promise100 controllers and multiple identical >>drives of their own liking, though most end up being Western Digital. >>~C >> >> >>>-----Original Message----- >>>From: Evan Heller [mailto:evan.heller at alum.rpi.edu] >>>Sent: Wednesday, March 10, 2004 5:23 PM >>>To: evan.heller at alum.rpi.edu >>>Subject: [nycphp-talk] OT - IDE Raid cards >>> >>> >>>Hi: >>> >>>I'm looking for opinions on what IDE raid cards are good >>>performers and cost >>>wise what is suggested. I'm looking to do simple mirroring >>>and the ability >>>to have 4 or more drives. Yes, I understand IDE raid is not >>>as good as SCSI >>>raid at the moment and I do use SCSI raid for my primary >>>systems, but I >>>would like to implement an IDE raid for backup purposes. I >>>currently use a >>>scsi perc 3 card with 128 megs of memory so I'm used to the >>>feature set of a >>>card of that type. >>> >>>So what do you guys recommend? Please list features/cost . >>>Thanks a bunch >>> >>>-Evan >>> >>>_______________________________________________ >>>talk mailing list >>>talk at lists.nyphp.org >>>http://lists.nyphp.org/mailman/listinfo/talk >>> >> >>_______________________________________________ >>talk mailing list >>talk at lists.nyphp.org >>http://lists.nyphp.org/mailman/listinfo/talk >> > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From tgales at tgaconnect.com Thu Mar 11 15:34:32 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Thu, 11 Mar 2004 15:34:32 -0500 Subject: [nycphp-talk] Wow, Microsoft In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87EB35CD@ehost011-1.exch011.intermedia.net> Message-ID: <006701c407a8$430619f0$e98d3818@oberon1> "What is PHP" at: http://office.microsoft.com Microsoft's information (network) seems like it might be suffering from a propagation delay of about one year. The PHP they seem to be talking about is what PHP looked like about 12-13 months ago. I have read articles about PHP 5 that were no longer accurate after 2-3 weeks. It is little wonder they want to compare the asp/net framework with last year's PHP -- look at what they want developers to use: Front Page 2003 T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com > From phillip.powell at adnet-sys.com Thu Mar 11 15:37:40 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Thu, 11 Mar 2004 15:37:40 -0500 Subject: [nycphp-talk] Wow, Microsoft References: <006701c407a8$430619f0$e98d3818@oberon1> Message-ID: <4050CE14.3050800@adnet-sys.com> Hmm.. let's see 1) ASP.NET: robust but expen$ive and lovingly provided, at major co$t, by Micro$oft. 2) PHP: robust (version 5+), free and lovingly provided at NO cost period 3) Frontpage: ACK!!!! Again proving the superiority of PHP (and TCL) and the inferiority of ASP, whatever version it's in now. "Encapsulated" of course. Phil Tim Gales wrote: > > "What is PHP" at: >http://office.microsoft.com > >Microsoft's information (network) seems like it might be >suffering from a propagation delay of about one year. > >The PHP they seem to be talking about is what PHP looked like >about 12-13 months ago. > >I have read articles about PHP 5 that were no longer >accurate after 2-3 weeks. > >It is little wonder they want to compare the asp/net >framework with last year's PHP -- look at what they >want developers to use: Front Page 2003 > >T. Gales & Associates >'Helping People Connect with Technology' > >http://www.tgaconnect.com > > > > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > > > -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From bpang at bpang.com Thu Mar 11 15:38:11 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Thu, 11 Mar 2004 15:38:11 -0500 (EST) Subject: [nycphp-talk] Wow, Microsoft In-Reply-To: <006701c407a8$430619f0$e98d3818@oberon1> References: <41EE526EC2D3C74286415780D3BA9F87EB35CD@ehost011-1.exch011.intermedia. net> <006701c407a8$430619f0$e98d3818@oberon1> Message-ID: <.38.117.145.89.1079037491.squirrel@www.bpang.com> I recall reading this article maybe about a year ago, so yes, it is outdated. > Microsoft's information (network) seems like it might be > suffering from a propagation delay of about one year. > > The PHP they seem to be talking about is what PHP looked like > about 12-13 months ago. From phillip.powell at adnet-sys.com Thu Mar 11 15:46:56 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Thu, 11 Mar 2004 15:46:56 -0500 Subject: [nycphp-talk] Does PHP (versions 4+) offer an alternative to Java RMI? Message-ID: <4050D040.8010800@adnet-sys.com> I am looking into designing a means of PHP scripts to interact with an existing Java servlet on a remote site. The servlet, however, instantiates classes that will be run on the remote server's JVM, and I was also hoping to integrate the results into a Java applet, however, the applet will, of course instantiate on the user's JVM on their machine and not the remote machine's JVM. Using RMI has been proven (by my limited Java knowledge of programming + architecture) to be too difficult to successfully achieve, and seeing the increated robustness of PHP I am inclined to think there could be some kind of "RMI" or even some object messaging service PHP could do to obtain stuff from a java servlet. Has anyone ever done anything like this before? Thanx Phil -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From crisscott at netzero.com Thu Mar 11 15:50:52 2004 From: crisscott at netzero.com (Scott Mattocks) Date: Thu, 11 Mar 2004 15:50:52 -0500 Subject: [nycphp-talk] Does PHP (versions 4+) offer an alternative to Java RMI? In-Reply-To: <4050D040.8010800@adnet-sys.com> References: <4050D040.8010800@adnet-sys.com> Message-ID: <4050D12C.2030901@netzero.com> Phil Powell wrote: > Has anyone ever done anything like this before? I haven't done anything like this but you might want to check out xml_rpc. http://us2.php.net/manual/en/ref.xmlrpc.php http://www.xmlrpc.com/ Scott Mattocks From felix at students.poly.edu Thu Mar 11 23:54:09 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Thu, 11 Mar 2004 23:54:09 -0500 Subject: [nycphp-talk] Does PHP (versions 4+) offer an alternative to Java RMI? In-Reply-To: <4050D12C.2030901@netzero.com> References: <4050D040.8010800@adnet-sys.com> <4050D12C.2030901@netzero.com> Message-ID: <20040311235409.2288ee07.felix@students.poly.edu> xml_rpc is certainly not a replacement for java rmi xml_rpc is simply a by value type of remote call while java rmi offers access to java objects as if you are accessing them by reference on local machine. In php there is probably nothing like rmi because the execution model is not similar. You be better of use xml_rpc or a simple HTTP POST > Phil Powell wrote: > > > Has anyone ever done anything like this before? > > I haven't done anything like this but you might want to check out > xml_rpc. http://us2.php.net/manual/en/ref.xmlrpc.php > http://www.xmlrpc.com/ > > Scott Mattocks > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -- felix[at]bebinary.com http://www.zaslavskiy.net/ From erank at isthmus.com Thu Mar 11 16:37:28 2004 From: erank at isthmus.com (Eric Rank) Date: Thu, 11 Mar 2004 15:37:28 -0600 Subject: [nycphp-talk] mysql module doesn't load? References: <4050D040.8010800@adnet-sys.com><4050D12C.2030901@netzero.com> <20040311235409.2288ee07.felix@students.poly.edu> Message-ID: <007101c407b1$0d65aeb0$8b01a8c0@DB> I don't know how much help I'll be able to glean from this list for this problem, simply because the problem is fairly specific and there are so many variables involved, but I'll throw it out there anyway. Problem: I get error messages like: Fatal error: Call to undefined function: mysql_connect() and Fatal error: Call to undefined function: mysql_get_client_info() when I try to execute scripts that use mysql functionality. This means that the mysql module is not working properly. I know that much. Details: Debian Woody system with apache-ssl (from stable) and php 4.3.4 (from moolfret). Both installed with apt-get. Mysql 4.0.X installed manually from binary available at mysql mirrors. Problem started after I did a remove / re-install of php4 (apt-get remove php4, apt-get install php4.) I DID make sure to `apt-get install php4-mysql` The mysql module is not listed on a 'phpinfo()' page. However, the configuration line lists mysql info in it. DB_Dataobject CAN communicate with the database! At this point I'm ready to remove and re-install both php and apache-ssl, but I'd like to avoid doing both if necessary. Esp. apache, as the config is fairly customized. Question: Is there something I'm missing configuration-wise? has anyone else had problems with the mysql module loading? Thanks team! ER From tom at supertom.com Thu Mar 11 16:38:51 2004 From: tom at supertom.com (tom at supertom.com) Date: Thu, 11 Mar 2004 16:38:51 -0500 Subject: [nycphp-talk] OT: ManHunt! In-Reply-To: <".38.117.145.89.1079037491.squirrel"@www.bpang.com> Message-ID: I know this is Off Topic, but I'm sure someone on this list will have some ideas. A client of mine has found someone using his intellectual property without authorization (no, it is not p0rn!). This is not the first this happened, so he proceeds to go to internic.net and look up the registrar info. Well, needless to say, the phone number is bogus, and the address turns up nothing in reverse lookup (but the address appears valid, but it is in the midwest). My client calls his web host, who of course won't give out any info (which is understandable), but they do slip and inform my client that he has *many* sites hosted with them. My questions to you are: 1. Can you think of any other way to get info on this guy? 2. Any way to find out what domains he has registered? His internic record didn't have a handle that you could search by - I'm not sure, that may only be a Network Solutions thing, and he didn't register with NS. The guy is now "on the run". He took down the site, and deactivated his email address. My client's concern is that this fellow will just take the stolen property and put it on another site. Any thoughts? Thanks, Tom www.liphp.org From yury at heavenspa.com Thu Mar 11 16:47:26 2004 From: yury at heavenspa.com (yury at heavenspa.com) Date: Thu, 11 Mar 2004 16:47:26 -0500 Subject: [nycphp-talk] OT: ManHunt! References: Message-ID: <036e01c407b2$72420940$0400a8c0@heavenspanyc> Reverse IP Lookup.. might help. ciao yury ----- Original Message ----- From: To: "NYPHP Talk" Sent: Thursday, March 11, 2004 4:38 PM Subject: [nycphp-talk] OT: ManHunt! > I know this is Off Topic, but I'm sure someone on this list will have some > ideas. > > A client of mine has found someone using his intellectual property without > authorization (no, it is not p0rn!). This is not the first this happened, > so he proceeds to go to internic.net and look up the registrar info. Well, > needless to say, the phone number is bogus, and the address turns up nothing > in reverse lookup (but the address appears valid, but it is in the midwest). > My client calls his web host, who of course won't give out any info (which > is understandable), but they do slip and inform my client that he has *many* > sites hosted with them. > > My questions to you are: > 1. Can you think of any other way to get info on this guy? > 2. Any way to find out what domains he has registered? His internic record > didn't have a handle that you could search by - I'm not sure, that may only > be a Network Solutions thing, and he didn't register with NS. > > The guy is now "on the run". He took down the site, and deactivated his > email address. My client's concern is that this fellow will just take the > stolen property and put it on another site. > > Any thoughts? > > Thanks, > > Tom > > www.liphp.org > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From yury at heavenspa.com Thu Mar 11 16:50:59 2004 From: yury at heavenspa.com (yury at heavenspa.com) Date: Thu, 11 Mar 2004 16:50:59 -0500 Subject: [nycphp-talk] OT: ManHunt! References: <036e01c407b2$72420940$0400a8c0@heavenspanyc> Message-ID: <037401c407b2$f0c59430$0400a8c0@heavenspanyc> http://www.webmasterworld.com/forum48/1261.htm ----- Original Message ----- From: To: "NYPHP Talk" Sent: Thursday, March 11, 2004 4:47 PM Subject: Re: [nycphp-talk] OT: ManHunt! > > > Reverse IP Lookup.. might help. > > ciao > yury > ----- Original Message ----- > From: > To: "NYPHP Talk" > Sent: Thursday, March 11, 2004 4:38 PM > Subject: [nycphp-talk] OT: ManHunt! > > > > I know this is Off Topic, but I'm sure someone on this list will have some > > ideas. > > > > A client of mine has found someone using his intellectual property without > > authorization (no, it is not p0rn!). This is not the first this happened, > > so he proceeds to go to internic.net and look up the registrar info. > Well, > > needless to say, the phone number is bogus, and the address turns up > nothing > > in reverse lookup (but the address appears valid, but it is in the > midwest). > > My client calls his web host, who of course won't give out any info (which > > is understandable), but they do slip and inform my client that he has > *many* > > sites hosted with them. > > > > My questions to you are: > > 1. Can you think of any other way to get info on this guy? > > 2. Any way to find out what domains he has registered? His internic > record > > didn't have a handle that you could search by - I'm not sure, that may > only > > be a Network Solutions thing, and he didn't register with NS. > > > > The guy is now "on the run". He took down the site, and deactivated his > > email address. My client's concern is that this fellow will just take the > > stolen property and put it on another site. > > > > Any thoughts? > > > > Thanks, > > > > Tom > > > > www.liphp.org > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From yury at heavenspa.com Thu Mar 11 17:13:12 2004 From: yury at heavenspa.com (yury at heavenspa.com) Date: Thu, 11 Mar 2004 17:13:12 -0500 Subject: [nycphp-talk] OT: ManHunt! References: Message-ID: <037e01c407b6$0b282880$0400a8c0@heavenspanyc> PS, are you gonna tell us the URL ? now that you've piqued our interests.... ----- Original Message ----- From: To: "NYPHP Talk" Sent: Thursday, March 11, 2004 4:38 PM Subject: [nycphp-talk] OT: ManHunt! > I know this is Off Topic, but I'm sure someone on this list will have some > ideas. > > A client of mine has found someone using his intellectual property without > authorization (no, it is not p0rn!). This is not the first this happened, > so he proceeds to go to internic.net and look up the registrar info. Well, > needless to say, the phone number is bogus, and the address turns up nothing > in reverse lookup (but the address appears valid, but it is in the midwest). > My client calls his web host, who of course won't give out any info (which > is understandable), but they do slip and inform my client that he has *many* > sites hosted with them. > > My questions to you are: > 1. Can you think of any other way to get info on this guy? > 2. Any way to find out what domains he has registered? His internic record > didn't have a handle that you could search by - I'm not sure, that may only > be a Network Solutions thing, and he didn't register with NS. > > The guy is now "on the run". He took down the site, and deactivated his > email address. My client's concern is that this fellow will just take the > stolen property and put it on another site. > > Any thoughts? > > Thanks, > > Tom > > www.liphp.org > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From phillip.powell at adnet-sys.com Thu Mar 11 17:46:03 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Thu, 11 Mar 2004 17:46:03 -0500 Subject: [nycphp-talk] Does PHP (versions 4+) offer an alternative to Java RMI? References: <4050D040.8010800@adnet-sys.com> <4050D12C.2030901@netzero.com> <20040311235409.2288ee07.felix@students.poly.edu> Message-ID: <4050EC2B.7060308@adnet-sys.com> Not sure how HTTP POST will help in this case. The Java servlet returns a java String[] serializable object, which normally would go to an applet. What would you recommend I use, either in Java, preferably in PHP, that could read this object and properly handle it? Thanx Phil felix zaslavskiy wrote: >xml_rpc is certainly not a replacement for java rmi >xml_rpc is simply a by value type of remote call while java rmi offers >access to java objects as if you are accessing them by reference on >local machine. > >In php there is probably nothing like rmi because the execution model is >not similar. You be better of use xml_rpc or a simple HTTP POST > > > >>Phil Powell wrote: >> >> >> >>>Has anyone ever done anything like this before? >>> >>> >>I haven't done anything like this but you might want to check out >>xml_rpc. http://us2.php.net/manual/en/ref.xmlrpc.php >>http://www.xmlrpc.com/ >> >>Scott Mattocks >>_______________________________________________ >>talk mailing list >>talk at lists.nyphp.org >>http://lists.nyphp.org/mailman/listinfo/talk >> >> >> > > > > -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From danielk at us.ibm.com Thu Mar 11 18:29:40 2004 From: danielk at us.ibm.com (Daniel Krook) Date: Thu, 11 Mar 2004 18:29:40 -0500 Subject: [nycphp-talk] Does PHP (versions 4+) offer an alternative to Java RMI? Message-ID: > The Java servlet returns > a java String[] serializable object, which normally would go to an > applet. What would you recommend I use, either in Java, preferably in > PHP, that could read this object and properly handle it? Not sure if this will help, but... You can have the remote servlet deconstruct its remote array of Strings and then send you a GET request in the format: /clientpage/?stringItem=This+String&stringItem=That+String You can then reconstruct the String[] locally in Java (or a PHP equivalent) with this: String[] arrValues = request.getParameterValues("stringItem"); Check out the Java Servlet APIs for more information on how it handles requests and responses over HTTP: http://java.sun.com/j2ee/1.4/docs/api/ http://java.sun.com/j2ee/1.4/docs/api/javax/servlet/http/HttpServletRequest.html http://java.sun.com/j2ee/1.4/docs/api/javax/servlet/http/HttpServletResponse.html Daniel Krook, Application Developer, Production Services, ibm.com 1133 Westchester Avenue, White Plains, NY 10604 Tel: (914) 642-4474, Tieline: 224-4474 danielk at us.ibm.com Contractor BluePages profile in exile: http://info.krook.org/ "Sharing expertise should be viewed as a collective commitment to the success of IBM's New Agenda - on demand." From agfische at email.smith.edu Fri Mar 12 08:37:25 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 12 Mar 2004 08:37:25 -0500 Subject: OT - [nycphp-talk] Wow, Microsoft In-Reply-To: <.38.117.145.89.1079036039.squirrel@www.bpang.com> References: <.38.117.145.89.1079036039.squirrel@www.bpang.com> Message-ID: <65A30872-742A-11D8-9517-0003930D07F2@email.smith.edu> And with Safari 1.2 on a Mac. On Mar 11, 2004, at 3:13 PM, bpang at bpang.com wrote: > "Warning: You are viewing this page with an unsupported Web browser. > This > Web site works best with Microsoft Internet Explorer 5.01 or later or > Netscape Navigator 6.0 or later. Click here for more information on > supported browsers." > > and with Mozilla 1.5... maybe it's time to upgrade to 1.6!!!! > HA! > >> Gee. Thanks Micro$oft for telling me >> "Warning: You are viewing this page with an unsupported Web browser. >> This >> Web site works best with Microsoft Internet Explorer 5.01 or later or >> Netscape Navigator 6.0 or later" >> >> hehehe... firebird! > >>> http://office.microsoft.com From jsiegel1 at optonline.net Fri Mar 12 09:22:57 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Fri, 12 Mar 2004 09:22:57 -0500 Subject: [nycphp-talk] GD Lib problem? Message-ID: <4051C7C1.7050006@optonline.net> I'm trying to create Captchas and it seems the hosting company does not have Freetype support enabled. The following comes from the phpinfo function: PHP 4.3.2 on FreeBSD GD Support enabled GD Version bundled (2.0.15 compatible) GIF Read Support enabled JPG Support enabled PNG Support enabled WBMP Support enabled XBM Support enabled Just wondering what kind of workaround there might be...or if there isn't any. Jeff Siegel From Cbielanski at inta.org Fri Mar 12 10:13:54 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 12 Mar 2004 10:13:54 -0500 Subject: [nycphp-talk] Let's talk about the 'var' keyword Message-ID: Hey gang, it never occured to me before but I note that it *appears* that the 'var' keyword is only allowed in classes in PHP 4. AFAIK, using it in a PHP4 function is verboten. Since we have some serious dev-listers here, I though I'd pose the question whether or not this is one of the things that's changing in PHP5 - I'm going to go on thinking it will be able to be used with the increased class functionality in order to support public, private, etc. As usual, it's open speculation and telling me I'm blatantly incorrect! - it was nice to see the list hopping again yesterday after being quiet most of the week! Thanks, Chris Bielanski - [CBielanski at inta.org] Web Programmer, International Trademark Association - [www.inta.org] 1133 Ave. of the Americas - Manhattan p - 212/642-1745 From danielc at analysisandsolutions.com Fri Mar 12 10:18:18 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 12 Mar 2004 10:18:18 -0500 Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: References: Message-ID: <20040312151818.GA4231@panix.com> On Fri, Mar 12, 2004 at 10:13:54AM -0500, Chris Bielanski wrote: > it never occured to me before but I note that it *appears* that the 'var' > keyword is only allowed in classes in PHP 4. AFAIK, using it in a PHP4 > function is verboten. Correct. It's used in Object Oriented Programming. Var defines properties' default values. Note that they need to be defined outside of methods (nb: in classes, functions are called methods). Example: class foo { var $x = 'y'; function bar() { } } var is deprecated in PHP 5, raising a new E_STRICT warning. Instead of using var, use public, private, protected, etc. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From dmintz at davidmintz.org Fri Mar 12 10:22:45 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 12 Mar 2004 10:22:45 -0500 (EST) Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: <20040312151818.GA4231@panix.com> References: <20040312151818.GA4231@panix.com> Message-ID: On Fri, 12 Mar 2004, Daniel Convissor wrote: > > var is deprecated in PHP 5, raising a new E_STRICT warning. Instead of > using var, use public, private, protected, etc. > > --Dan D'OH!!!!!!!! Another item for my to-do list for porting from 4 5. Sh*t. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From Cbielanski at inta.org Fri Mar 12 10:28:22 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 12 Mar 2004 10:28:22 -0500 Subject: [nycphp-talk] Let's talk about the 'var' keyword Message-ID: Now that, good sir, is the answer I did not expect! Therefore, my query operated perfectly! And judging by Mintzy's response, I asked none too soon... Thanks Dan! ~C > -----Original Message----- > From: Daniel Convissor [mailto:danielc at analysisandsolutions.com] > Sent: Friday, March 12, 2004 10:18 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Let's talk about the 'var' keyword > > > On Fri, Mar 12, 2004 at 10:13:54AM -0500, Chris Bielanski wrote: > > > it never occured to me before but I note that it *appears* > that the 'var' > > keyword is only allowed in classes in PHP 4. AFAIK, using > it in a PHP4 > > function is verboten. > > Correct. It's used in Object Oriented Programming. Var defines > properties' default values. Note that they need to be > defined outside of > methods (nb: in classes, functions are called methods). Example: > > class foo { > var $x = 'y'; > function bar() { > } > } > > var is deprecated in PHP 5, raising a new E_STRICT warning. > Instead of > using var, use public, private, protected, etc. > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Fri Mar 12 10:26:43 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 12 Mar 2004 10:26:43 -0500 Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: References: <20040312151818.GA4231@panix.com> Message-ID: <20040312152643.GA5337@panix.com> On Fri, Mar 12, 2004 at 10:22:45AM -0500, David Mintz wrote: > > Another item for my to-do list for porting from 4 5. Sh*t. It's not a big deal. E_STRICT is off by default. So, you can take most 4 code and run it on 5 w/o any changes. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From dmintz at davidmintz.org Fri Mar 12 10:36:31 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 12 Mar 2004 10:36:31 -0500 (EST) Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: <20040312152643.GA5337@panix.com> References: <20040312151818.GA4231@panix.com> <20040312152643.GA5337@panix.com> Message-ID: On Fri, 12 Mar 2004, Daniel Convissor wrote: > On Fri, Mar 12, 2004 at 10:22:45AM -0500, David Mintz wrote: > > > > Another item for my to-do list for porting from 4 5. Sh*t. > > It's not a big deal. E_STRICT is off by default. So, you can take most 4 > code and run it on 5 w/o any changes. That's good news. Still -- when my code does things that are deprecated I feel -- what's the opposite of warm and fuzzy? -- like I oughta update it lest it come back and bite me some distant day. Not to turn this into a psychotherapy session or anything.... --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From danielc at analysisandsolutions.com Fri Mar 12 10:38:19 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 12 Mar 2004 10:38:19 -0500 Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: References: <20040312151818.GA4231@panix.com> <20040312152643.GA5337@panix.com> Message-ID: <20040312153819.GA6312@panix.com> On Fri, Mar 12, 2004 at 10:36:31AM -0500, David Mintz wrote: > > Still -- when my code does things that are deprecated I feel -- what's the > opposite of warm and fuzzy? -- like I oughta update it lest it come back > and bite me some distant day. You're right. But, fortunately, there's no rush. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From jlacey at att.net Fri Mar 12 10:41:26 2004 From: jlacey at att.net (John Lacey) Date: Fri, 12 Mar 2004 08:41:26 -0700 Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: <20040312152643.GA5337@panix.com> References: <20040312151818.GA4231@panix.com> <20040312152643.GA5337@panix.com> Message-ID: <4051DA26.2060106@att.net> Daniel Convissor wrote: > > > It's not a big deal. E_STRICT is off by default. So, you can take most 4 > code and run it on 5 w/o any changes. for PHP4 at least, I code with E_ALL -- any other opinions on this? John From Cbielanski at inta.org Fri Mar 12 10:47:50 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 12 Mar 2004 10:47:50 -0500 Subject: [nycphp-talk] Let's talk about the 'var' keyword Message-ID: > -----Original Message----- > From: David Mintz [mailto:dmintz at davidmintz.org] > -- what's the opposite of warm and fuzzy? -- > cold and prickly... ~C From dmintz at davidmintz.org Fri Mar 12 10:47:19 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 12 Mar 2004 10:47:19 -0500 (EST) Subject: [nycphp-talk] Let's talk about the 'var' keyword In-Reply-To: References: Message-ID: On Fri, 12 Mar 2004, Chris Bielanski wrote: > > -----Original Message----- > > From: David Mintz [mailto:dmintz at davidmintz.org] > > -- what's the opposite of warm and fuzzy? -- > > > > cold and prickly... Or possibly, cold and clear-eyed. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From Cbielanski at inta.org Fri Mar 12 10:54:22 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 12 Mar 2004 10:54:22 -0500 Subject: OT - [nycphp-talk] Let's talk about the 'var' keyword Message-ID: Nope :) It's canon! The story: Back in high school there was some be-happy-friendly type camp thing sponsored by the school district. All the participants were given an angora thread as a "Warm Fuzzy". When you wanted to give someone kudos, you put the Fuzzy over their head like a lei, and said some gofy thing about why you're giving them your Warm Fuzzy. When you pissed someone off by being rude or crass or whatever, they called it a Cold Prickly, and any Warm Fuzzies you had accrued were returned to their owners, or perhaps given to ther person you annoyed. Looking back on it now it sounds like a schoolyard psychology experiment - and oh, so very wrong... ~C > -----Original Message----- > From: David Mintz [mailto:dmintz at davidmintz.org] > Sent: Friday, March 12, 2004 10:47 AM > To: NYPHP Talk > Subject: RE: [nycphp-talk] Let's talk about the 'var' keyword > > > On Fri, 12 Mar 2004, Chris Bielanski wrote: > > > > -----Original Message----- > > > From: David Mintz [mailto:dmintz at davidmintz.org] > > > -- what's the opposite of warm and fuzzy? -- > > > > > > > cold and prickly... > > > Or possibly, cold and clear-eyed. > > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From bpang at bpang.com Fri Mar 12 11:18:07 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Fri, 12 Mar 2004 11:18:07 -0500 (EST) Subject: [nycphp-talk] GD Lib problem? In-Reply-To: <4051C7C1.7050006@optonline.net> References: <4051C7C1.7050006@optonline.net> Message-ID: <.38.117.145.89.1079108287.squirrel@www.bpang.com> create individual images of each char and then string those together? A.png B.png C.png etc... > I'm trying to create Captchas and it seems the hosting company does not > have Freetype support enabled. The following comes from the phpinfo > function: > > PHP 4.3.2 on FreeBSD > > GD Support enabled > GD Version bundled (2.0.15 compatible) > GIF Read Support enabled > JPG Support enabled > PNG Support enabled > WBMP Support enabled > XBM Support enabled > > Just wondering what kind of workaround there might be...or if there > isn't any. > > Jeff Siegel > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Fri Mar 12 11:41:50 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Fri, 12 Mar 2004 11:41:50 -0500 Subject: [nycphp-talk] GD Lib problem? In-Reply-To: <".38.117.145.89.1079108287.squirrel"@www.bpang.com> References: <4051C7C1.7050006@optonline.net> <".38.117.145.89.1079108287.squirrel"@www.bpang.com> Message-ID: <4051E84E.3030003@optonline.net> I thought of that but then it would seem to kinda defeat the purpose of a captcha since one could write some simple script to just read the html and figure out the sequence of numbers/letters based on the filenames. Another thought was to have these files in some non-doc root directory and then copy them - using randomly generated new names - as needed and then removing them when no longer needed...but I'm not nuts over that idea. In the interim, I'm using the GD lib's built-in bitmap fonts...not great looking but okay for now. Jeff ------------ bpang at bpang.com wrote: > create individual images of each char and then string those together? > > A.png > B.png > C.png > etc... > > > >>I'm trying to create Captchas and it seems the hosting company does not >>have Freetype support enabled. The following comes from the phpinfo >>function: >> >>PHP 4.3.2 on FreeBSD >> >>GD Support enabled >>GD Version bundled (2.0.15 compatible) >>GIF Read Support enabled >>JPG Support enabled >>PNG Support enabled >>WBMP Support enabled >>XBM Support enabled >> >>Just wondering what kind of workaround there might be...or if there >>isn't any. >> >>Jeff Siegel >> >>_______________________________________________ >>talk mailing list >>talk at lists.nyphp.org >>http://lists.nyphp.org/mailman/listinfo/talk >> > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From dcech at phpwerx.net Fri Mar 12 11:51:20 2004 From: dcech at phpwerx.net (Dan Cech) Date: Fri, 12 Mar 2004 11:51:20 -0500 Subject: [nycphp-talk] GD Lib problem? In-Reply-To: <4051E84E.3030003@optonline.net> References: <4051C7C1.7050006@optonline.net> <".38.117.145.89.1079108287.squirrel"@www.bpang.com> <4051E84E.3030003@optonline.net> Message-ID: <4051EA88.9020404@phpwerx.net> Jeff Siegel wrote: > I thought of that but then it would seem to kinda defeat the purpose of > a captcha since one could write some simple script to just read the html > and figure out the sequence of numbers/letters based on the filenames. I think the intent was to use the imagecopy function to build your basic text string out of pre-made png images, then apply whatever obfuscation technique to the resulting montage, and output a single image. It could work quite well, especially if you had a large pool of pre-made letters to draw from. Dan > Another thought was to have these files in some non-doc root directory > and then copy them - using randomly generated new names - as needed and > then removing them when no longer needed...but I'm not nuts over that idea. > > In the interim, I'm using the GD lib's built-in bitmap fonts...not great > looking but okay for now. > > Jeff > ------------ > > bpang at bpang.com wrote: > >> create individual images of each char and then string those together? >> >> A.png >> B.png >> C.png >> etc... >> >> >> >>> I'm trying to create Captchas and it seems the hosting company does not >>> have Freetype support enabled. The following comes from the phpinfo >>> function: >>> >>> PHP 4.3.2 on FreeBSD >>> >>> GD Support enabled >>> GD Version bundled (2.0.15 compatible) >>> GIF Read Support enabled >>> JPG Support enabled >>> PNG Support enabled >>> WBMP Support enabled >>> XBM Support enabled >>> >>> Just wondering what kind of workaround there might be...or if there >>> isn't any. >>> >>> Jeff Siegel >>> >>> _______________________________________________ >>> talk mailing list >>> talk at lists.nyphp.org >>> http://lists.nyphp.org/mailman/listinfo/talk >>> >> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From bpang at bpang.com Fri Mar 12 12:03:50 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Fri, 12 Mar 2004 12:03:50 -0500 (EST) Subject: [nycphp-talk] GD Lib problem? In-Reply-To: <4051EA88.9020404@phpwerx.net> References: <4051C7C1.7050006@optonline.net> <".38.117.145.89.1079108287.squirrel" @www.bpang.com><4051E84E.3030003@optonline.net> <4051EA88.9020404@phpwerx.net> Message-ID: <.38.117.145.89.1079111030.squirrel@www.bpang.com> Yes, that's what I intended for you to do... you could also use simple silhouette shapes to further confound debunkers circle, square, elephant, automobile, etc... the problem with the built in text is that size is limited.. > Jeff Siegel wrote: >> I thought of that but then it would seem to kinda defeat the purpose of >> a captcha since one could write some simple script to just read the html >> and figure out the sequence of numbers/letters based on the filenames. > > I think the intent was to use the imagecopy function to build your basic > text string out of pre-made png images, then apply whatever obfuscation > technique to the resulting montage, and output a single image. > > It could work quite well, especially if you had a large pool of pre-made > letters to draw from. From bpang at bpang.com Fri Mar 12 12:11:48 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Fri, 12 Mar 2004 12:11:48 -0500 (EST) Subject: [nycphp-talk] since we're talking about GD and text... Message-ID: <.38.117.145.89.1079111508.squirrel@www.bpang.com> I've been using imagettftext when creating images on the fly and have been running into some weirdness with text alignment it varies from font to font, but what happens is that certain strings/letter combinations shift the baseline from character to character. For example, using arial.ttf (ripped off WinXP, but why should that matter?) the string "111" appears as: 111 but each sequential digit's baseline is a pixel or so lower than the previous digit. But, the same string is ok when using verdana.ttf (again, ripped from WinXP) However, verdana had a similar problem whenever an "a" followed a "T" such that in the string "Tapioca" the baseline for the letter "T" is a pixel or so HIGHER than the rest of the string. Has anyone else noticed this? I haven't seen anything on php.net or in google searches. Would it be considered a bona-fide bug? I have tried numerous solutions, short of drawing out each char and imagecopymerge-ing them as has been suggested to Jeff for his Captcha. For me, there is enough text that it would probably be really slow. From jsiegel1 at optonline.net Fri Mar 12 12:19:23 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Fri, 12 Mar 2004 12:19:23 -0500 Subject: [nycphp-talk] GD Lib problem? In-Reply-To: <4051EA88.9020404@phpwerx.net> References: <4051C7C1.7050006@optonline.net> <".38.117.145.89.1079108287.squirrel"@www.bpang.com> <4051E84E.3030003@optonline.net> <4051EA88.9020404@phpwerx.net> Message-ID: <4051F11B.4000904@optonline.net> That's a good idea. I'm going to see if the ISP can do something concerning the GD lib before I go down this road. Jeff -------- Dan Cech wrote: > Jeff Siegel wrote: > >> I thought of that but then it would seem to kinda defeat the purpose >> of a captcha since one could write some simple script to just read the >> html and figure out the sequence of numbers/letters based on the >> filenames. > > > I think the intent was to use the imagecopy function to build your basic > text string out of pre-made png images, then apply whatever obfuscation > technique to the resulting montage, and output a single image. > > It could work quite well, especially if you had a large pool of pre-made > letters to draw from. > > Dan > >> Another thought was to have these files in some non-doc root directory >> and then copy them - using randomly generated new names - as needed >> and then removing them when no longer needed...but I'm not nuts over >> that idea. >> >> In the interim, I'm using the GD lib's built-in bitmap fonts...not >> great looking but okay for now. >> >> Jeff >> ------------ >> >> bpang at bpang.com wrote: >> >>> create individual images of each char and then string those together? >>> >>> A.png >>> B.png >>> C.png >>> etc... >>> >>> >>> >>>> I'm trying to create Captchas and it seems the hosting company does not >>>> have Freetype support enabled. The following comes from the phpinfo >>>> function: >>>> >>>> PHP 4.3.2 on FreeBSD >>>> >>>> GD Support enabled >>>> GD Version bundled (2.0.15 compatible) >>>> GIF Read Support enabled >>>> JPG Support enabled >>>> PNG Support enabled >>>> WBMP Support enabled >>>> XBM Support enabled >>>> >>>> Just wondering what kind of workaround there might be...or if there >>>> isn't any. >>>> >>>> Jeff Siegel >>>> >>>> _______________________________________________ >>>> talk mailing list >>>> talk at lists.nyphp.org >>>> http://lists.nyphp.org/mailman/listinfo/talk >>>> >>> >>> >>> _______________________________________________ >>> talk mailing list >>> talk at lists.nyphp.org >>> http://lists.nyphp.org/mailman/listinfo/talk >>> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From Rafi.Sheikh at Ingenix.com Fri Mar 12 13:44:07 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Fri, 12 Mar 2004 12:44:07 -0600 Subject: [nycphp-talk] RE: Best way to read in an array Message-ID: Hello List: I am very new and hoping to get some help in terms of reading an array (I have tried but failing) BASIC: apache 1.3.29, PHP 4.3.4, MySQL 4.0.17-nt on WIN2K-Pro I have data as : category month1 month2 month3 abc 100 99 100 xyz 98 99 89 etc... QUESTION: I need to geteach row in in variable so I could use it in a line graph or as: $datax=array(100,99,100) //to be laid out, I will use $datax in my graph plot line There would be 6 rows that I need 6 lines. I have the table in a table in Mysql PROBLEM: I have no idea how can I read the table so each row is assigned to a varaible that I oculd use as example above. I have read and re-read arcticles, but I am missing things..any help in formulating this block is truly appreciated. Regards, Rafi This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From Cbielanski at inta.org Fri Mar 12 13:54:06 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 12 Mar 2004 13:54:06 -0500 Subject: [nycphp-talk] RE: Best way to read in an array Message-ID: do your query, then with the $result... while($row = mysql_fetch_assoc($result)) { // this will need to be put into an array if you get multiple rows, so... array_push($plotdata, array($row['category'],$row['month1'],$row['month2'],$row['month3'])); } Bear in mind that column names are case-senseitive from the query to the associative index name. When using select *, the indices in $row will be *exactly* as the column names are in the table. HTH ~Chris > -----Original Message----- > From: Rafi Sheikh [mailto:Rafi.Sheikh at Ingenix.com] > Sent: Friday, March 12, 2004 1:44 PM > To: 'talk at lists.nyphp.org' > Subject: [nycphp-talk] RE: Best way to read in an array > > > Hello List: I am very new and hoping to get some help in > terms of reading > an array (I have tried but failing) > > BASIC: apache 1.3.29, PHP 4.3.4, MySQL 4.0.17-nt on WIN2K-Pro > > I have data as : > category month1 month2 month3 > abc 100 99 100 > xyz 98 99 89 > > etc... > > QUESTION: > I need to geteach row in in variable so I could use it in a > line graph or > as: > > $datax=array(100,99,100) //to be laid out, I will use > $datax in my graph > plot line > > There would be 6 rows that I need 6 lines. > > I have the table in a table in Mysql > > PROBLEM: > I have no idea how can I read the table so each row is assigned to a > varaible that I oculd use as example above. > > I have read and re-read arcticles, but I am missing > things..any help in > formulating this block is truly appreciated. > > Regards, > > Rafi > > > This e-mail, including attachments, may include confidential and/or > proprietary information, and may be used only by the person > or entity to > which it is addressed. If the reader of this e-mail is not > the intended > recipient or his or her authorized agent, the reader is > hereby notified that > any dissemination, distribution or copying of this e-mail is > prohibited. If > you have received this e-mail in error, please notify the > sender by replying > to this message and delete this e-mail immediately. > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From Cbielanski at inta.org Fri Mar 12 13:57:23 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 12 Mar 2004 13:57:23 -0500 Subject: [nycphp-talk] RE: Best way to read in an array Message-ID: let me modify that a little... WAS: array_push($plotdata, array($row['category'],$row['month1'],$row['month2'],$row['month3'])); SHOULD BE: array_push($plotdata, array('category' => $row['category'],'month1' => $row['month1'], 'month2' => $row['month2'], 'month3' =>$row['month3'])); Sorry about that!! :) ~C > -----Original Message----- > From: Chris Bielanski [mailto:Cbielanski at inta.org] > Sent: Friday, March 12, 2004 1:54 PM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] RE: Best way to read in an array > > > do your query, then with the $result... > > while($row = mysql_fetch_assoc($result)) > { > // this will need to be put into an array if you get multiple > rows, so... > array_push($plotdata, > array($row['category'],$row['month1'],$row['month2'],$row['month3'])); > } > Bear in mind that column names are case-senseitive from the > query to the > associative index name. When using select *, the indices in > $row will be > *exactly* as the column names are in the table. > > HTH > ~Chris > > > -----Original Message----- > > From: Rafi Sheikh [mailto:Rafi.Sheikh at Ingenix.com] > > Sent: Friday, March 12, 2004 1:44 PM > > To: 'talk at lists.nyphp.org' > > Subject: [nycphp-talk] RE: Best way to read in an array > > > > > > Hello List: I am very new and hoping to get some help in > > terms of reading > > an array (I have tried but failing) > > > > BASIC: apache 1.3.29, PHP 4.3.4, MySQL 4.0.17-nt on WIN2K-Pro > > > > I have data as : > > category month1 month2 month3 > > abc 100 99 100 > > xyz 98 99 89 > > > > etc... > > > > QUESTION: > > I need to geteach row in in variable so I could use it in a > > line graph or > > as: > > > > $datax=array(100,99,100) //to be laid out, I will use > > $datax in my graph > > plot line > > > > There would be 6 rows that I need 6 lines. > > > > I have the table in a table in Mysql > > > > PROBLEM: > > I have no idea how can I read the table so each row is assigned to a > > varaible that I oculd use as example above. > > > > I have read and re-read arcticles, but I am missing > > things..any help in > > formulating this block is truly appreciated. > > > > Regards, > > > > Rafi > > > > > > This e-mail, including attachments, may include confidential and/or > > proprietary information, and may be used only by the person > > or entity to > > which it is addressed. If the reader of this e-mail is not > > the intended > > recipient or his or her authorized agent, the reader is > > hereby notified that > > any dissemination, distribution or copying of this e-mail is > > prohibited. If > > you have received this e-mail in error, please notify the > > sender by replying > > to this message and delete this e-mail immediately. > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Fri Mar 12 14:05:43 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 12 Mar 2004 14:05:43 -0500 Subject: [nycphp-talk] RE: Best way to read in an array In-Reply-To: References: Message-ID: <20040312190543.GA29210@panix.com> On Fri, Mar 12, 2004 at 12:44:07PM -0600, Rafi Sheikh wrote: > I need to geteach row in in variable so I could use it in a line graph or ... > I have the table in a table in Mysql http://php.net/mysql_fetch_assoc Read the documentation and examples there. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From erank at isthmus.com Fri Mar 12 15:13:56 2004 From: erank at isthmus.com (Eric Rank) Date: Fri, 12 Mar 2004 14:13:56 -0600 Subject: [nycphp-talk] RE: Best way to read in an array References: Message-ID: <00ba01c4086e$8c3e1480$8b01a8c0@DB> One of my favorite was of doing this is a one liner. After you get the $result from the query... for($i=0; $i Array ( [firstcolname] => value of first col in FIRST row [secondcolname] => value of second col in FIRST row [thirdcolname] => value of third col in FIRST row ) [1] => Array ( [firstcolname] => value of first col in SECOND row [secondcolname] => value of second col in SECOND row [thirdcolname] => value of third col in SECOND row ) [2] => Array ( [firstcolname] => value of first col in THIRD row [secondcolname] => value of second col in THIRD row [thirdcolname] => value of third col in THIRD row ))Of course, if you want to do anything with the information, you can just put it within the for loop. This works well for situations when you need to use the result later on or for more than one thing.E.----- Original Message ----- From: "Chris Bielanski" To: "'NYPHP Talk'" Sent: Friday, March 12, 2004 12:57 PM Subject: RE: [nycphp-talk] RE: Best way to read in an array > let me modify that a little... > > WAS: > array_push($plotdata, > array($row['category'],$row['month1'],$row['month2'],$row['month3'])); > > SHOULD BE: > array_push($plotdata, > array('category' => $row['category'],'month1' => $row['month1'], 'month2' > => $row['month2'], 'month3' =>$row['month3'])); > > Sorry about that!! :) > > ~C > > > -----Original Message----- > > From: Chris Bielanski [mailto:Cbielanski at inta.org] > > Sent: Friday, March 12, 2004 1:54 PM > > To: 'NYPHP Talk' > > Subject: RE: [nycphp-talk] RE: Best way to read in an array > > > > > > do your query, then with the $result... > > > > while($row = mysql_fetch_assoc($result)) > > { > > // this will need to be put into an array if you get multiple > > rows, so... > > array_push($plotdata, > > array($row['category'],$row['month1'],$row['month2'],$row['month3'])); > > } > > Bear in mind that column names are case-senseitive from the > > query to the > > associative index name. When using select *, the indices in > > $row will be > > *exactly* as the column names are in the table. > > > > HTH > > ~Chris > > > > > -----Original Message----- > > > From: Rafi Sheikh [mailto:Rafi.Sheikh at Ingenix.com] > > > Sent: Friday, March 12, 2004 1:44 PM > > > To: 'talk at lists.nyphp.org' > > > Subject: [nycphp-talk] RE: Best way to read in an array > > > > > > > > > Hello List: I am very new and hoping to get some help in > > > terms of reading > > > an array (I have tried but failing) > > > > > > BASIC: apache 1.3.29, PHP 4.3.4, MySQL 4.0.17-nt on WIN2K-Pro > > > > > > I have data as : > > > category month1 month2 month3 > > > abc 100 99 100 > > > xyz 98 99 89 > > > > > > etc... > > > > > > QUESTION: > > > I need to geteach row in in variable so I could use it in a > > > line graph or > > > as: > > > > > > $datax=array(100,99,100) //to be laid out, I will use > > > $datax in my graph > > > plot line > > > > > > There would be 6 rows that I need 6 lines. > > > > > > I have the table in a table in Mysql > > > > > > PROBLEM: > > > I have no idea how can I read the table so each row is assigned to a > > > varaible that I oculd use as example above. > > > > > > I have read and re-read arcticles, but I am missing > > > things..any help in > > > formulating this block is truly appreciated. > > > > > > Regards, > > > > > > Rafi > > > > > > > > > This e-mail, including attachments, may include confidential and/or > > > proprietary information, and may be used only by the person > > > or entity to > > > which it is addressed. If the reader of this e-mail is not > > > the intended > > > recipient or his or her authorized agent, the reader is > > > hereby notified that > > > any dissemination, distribution or copying of this e-mail is > > > prohibited. If > > > you have received this e-mail in error, please notify the > > > sender by replying > > > to this message and delete this e-mail immediately. > > > _______________________________________________ > > > talk mailing list > > > talk at lists.nyphp.org > > > http://lists.nyphp.org/mailman/listinfo/talk > > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From danielc at analysisandsolutions.com Fri Mar 12 17:28:23 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 12 Mar 2004 17:28:23 -0500 Subject: [nycphp-talk] Re: [nycphp-jobs] PHP job opening Message-ID: <20040312222823.GA15513@panix.com> Hi Folks: >From a posting to the jobs list earlier today: [ http://lists.nyphp.org/pipermail/jobs/2004-March/000091.html ] > The developer must have strong intrapersonal skills ^^ Are they're looking for Zen Buddhists or something? --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From felix at students.poly.edu Fri Mar 12 17:38:45 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Fri, 12 Mar 2004 17:38:45 -0500 Subject: [nycphp-talk] Re: [nycphp-jobs] PHP job opening In-Reply-To: <20040312222823.GA15513@panix.com> References: <20040312222823.GA15513@panix.com> Message-ID: <20040312173845.28996d11.felix@students.poly.edu> I am thick and tired of these elitist job postings. Most people who are familiar with my work know I can accomplish pretty anything. But again my resume would not even pass the small test in this case. Maybe the guy who wrote this didn't get the memo that php is relatively easy language and that its no c++. Its also not so hard to create a web base report from a database. Its not like you have to create complicated statistical models. There is absolutely nothing in this description that would suggest that its nothing more then an entry-level position form someone out of school. Original post -------------------------------------------- PHP/Web developer Right Media is seeking an experienced PHP developer/architect to join its user interface/reporting team. All candidates MUST have significant professional experience developing complex, database-driven PHP applications. This is a challenging position and is not suitable for novice or entry-level programmers. As the application uses a database backend and runs on Unix, experience with SQL (MySQL experience is desirable) and Unix/Linux is required. The developer will be responsible for the creation of a web application that displays complex, custom reports. Many of these reports are financial, and will be used for accounting purposes. The developer must have strong intrapersonal skills and be able to find the ideal way to implement requirements in a clean, elegant way. Reusable code is important, using object-oriented design where possible. Functional tests will be written, where possible, to validate the correctness of the code. Candidates should be able to provide examples of web applications and/or frameworks that they have developed, to discuss practical and theoretical consequences of design choices. Qualifications: * Professional experience developing/architecting PHP-based web applications * SQL and a good knowledge of client-server architecture a must * Web page design with HTML, JavaScript, and CSS * Experience administrating Apache in a Unix environment is a plus * Proven experience designing browser-based GUIs, writing usability tests, and incorporating user feedback This position is full-time in New York City, NY. This is not a telecommute or contract position. Salary commensurate with experience. Right Media is an equal opportunity employer. Email resumes and questions to ekozek at rightmedia.com. On Fri, 12 Mar 2004 17:28:23 -0500 Daniel Convissor wrote: > Hi Folks: > > >From a posting to the jobs list earlier today: > [ http://lists.nyphp.org/pipermail/jobs/2004-March/000091.html ] > > > The developer must have strong intrapersonal skills > ^^ > Are they're looking for Zen Buddhists or something? > > --Dan > > -- > T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y > data intensive web and database programming > http://www.AnalysisAndSolutions.com/ > 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -- felix[at]bebinary.com http://www.zaslavskiy.net/ From mitchy at spacemonkeylabs.com Fri Mar 12 17:55:24 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 12 Mar 2004 17:55:24 -0500 Subject: [nycphp-talk] Re: [nycphp-jobs] PHP job opening In-Reply-To: <20040312173845.28996d11.felix@students.poly.edu> References: <20040312222823.GA15513@panix.com> <20040312173845.28996d11.felix@students.poly.edu> Message-ID: <40523FDC.3070104@spacemonkeylabs.com> felix zaslavskiy wrote: > I am thick and tired of these elitist job postings. > > Most people who are familiar with my work know I can accomplish pretty > anything. But again my resume would not even pass the small test in this > case. > > Maybe the guy who wrote this didn't get the memo that php is relatively > easy language and that its no c++. Its also not so hard to create a web > base report from a database. Its not like you have to create complicated > statistical models. There is absolutely nothing in this description > that would suggest that its nothing more then an entry-level position > form someone out of school. No, that part of the discussion happens when you negotiate your rate. The process is followed thusly: THE ADVERTISEMENT "The candidate must possess supernatural skills, be capable of working without sleep, have the complete software design processes mastered from requirements to maintenance, and be expert at programming, databases, and systems integration. This project is critical for the success of the business, and the applicant must respond well to immense pressure to perform and very tight deadlines. Required certifications are: CISSP, MCSE, RHSE, and BYOL. Applicant must also be a 47th-level blackbelt regarding security, and have a master's degree in something mostly relevant. Methodologies required are RUP, MVC, PDQ, XYZ..." THE COMPENSATION PLAN "As this is a junior-level position with minimal strategic relevance in the day-to-day operations of the business, the job will be starting out at the rates applicable for an 18-year-old. In about 10 years, if the company is still solvent and you haven't been relieved of your duties by one of the forty-seven mid-level managers that you will be reporting to, you may qualify for a possibly measurable raise." From dmintz at davidmintz.org Fri Mar 12 17:57:37 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 12 Mar 2004 17:57:37 -0500 (EST) Subject: [nycphp-talk] Re: [nycphp-jobs] PHP job opening In-Reply-To: <20040312222823.GA15513@panix.com> References: <20040312222823.GA15513@panix.com> Message-ID: On Fri, 12 Mar 2004, Daniel Convissor wrote: > > The developer must have strong intrapersonal skills > ^^ > Are they're looking for Zen Buddhists or something? Best laugh I've had all the afternoon, Thanks! Actually I was already thinking about goofing on the standard "interpersonal skills" bit you always see in job announcements. Here's one I'd like to see: The successful candidate will have extraordinarily poor interpersonal skills, mumble and stare at her/his shoes during face to face communication, not return email and voice mail messages, and not be a motivated team player. Severe personality disorders, poor personal hygiene a plus. Drug- and alcohol-dependent candidates preferred. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From felix at students.poly.edu Fri Mar 12 18:09:36 2004 From: felix at students.poly.edu (felix zaslavskiy) Date: Fri, 12 Mar 2004 18:09:36 -0500 Subject: [nycphp-talk] Re: [nycphp-jobs] PHP job opening In-Reply-To: <40523FDC.3070104@spacemonkeylabs.com> References: <20040312222823.GA15513@panix.com> <20040312173845.28996d11.felix@students.poly.edu> <40523FDC.3070104@spacemonkeylabs.com> Message-ID: <20040312180936.6dbbe906.felix@students.poly.edu> > > I am thick and tired of these elitist job postings. > > > > Most people who are familiar with my work know I can accomplish > > pretty anything. But again my resume would not even pass the small > > test in this case. > > > > Maybe the guy who wrote this didn't get the memo that php is > > relatively easy language and that its no c++. Its also not so hard > > to create a web base report from a database. Its not like you have > > to create complicated statistical models. There is absolutely > > nothing in this description that would suggest that its nothing more > > then an entry-level position form someone out of school. > > No, that part of the discussion happens when you negotiate your rate. > The process is followed thusly: > > THE ADVERTISEMENT > > "The candidate must possess supernatural skills, be capable of working > without sleep, have the complete software design processes mastered > from requirements to maintenance, and be expert at programming, > databases, and systems integration. This project is critical for the > success of the business, and the applicant must respond well to > immense pressure to perform and very tight deadlines. Required > certifications are: CISSP, MCSE, RHSE, and BYOL. Applicant must also > be a 47th-level blackbelt regarding security, and have a master's > degree in something mostly relevant. Methodologies required are RUP, > MVC, PDQ, XYZ..." Maybe I should list all those skills on my resume just for the hell of it ? > > THE COMPENSATION PLAN > > "As this is a junior-level position with minimal strategic relevance > in the day-to-day operations of the business, the job will be starting > out at the rates applicable for an 18-year-old. In about 10 years, if > the company is still solvent and you haven't been relieved of your > duties by one of the forty-seven mid-level managers that you will be > reporting to, you may qualify for a possibly measurable raise." -- felix[at]bebinary.com http://www.zaslavskiy.net/ From nyphp at websapp.com Sat Mar 13 10:30:46 2004 From: nyphp at websapp.com (Daniel Kushner) Date: Sat, 13 Mar 2004 10:30:46 -0500 Subject: [nycphp-talk] PHP & MySQL in the news Message-ID: <200403131530.i2DFUk0Z020068@ns5.oddcast.com> http://news.com.com/2100-7344-5173014.html?tag=nefd_hed -Daniel --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.618 / Virus Database: 397 - Release Date: 3/9/2004 From tgales at tgaconnect.com Sat Mar 13 10:43:01 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Sat, 13 Mar 2004 10:43:01 -0500 Subject: [nycphp-talk] PHP & MySQL in the news In-Reply-To: <200403131530.i2DFUk0Z020068@ns5.oddcast.com> Message-ID: <000901c40911$de9669f0$e98d3818@oberon1> PHP & MySQL in the news http://news.com.com/2100-7344-5173014.html?tag=nefd_hed will that signal fewer 'Segmentation' faults for users in the future? T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From jonbaer at jonbaer.net Mon Mar 15 15:56:01 2004 From: jonbaer at jonbaer.net (jon baer) Date: Mon, 15 Mar 2004 15:56:01 -0500 Subject: [nycphp-talk] MySQL Cluster ... Message-ID: <004601c40acf$eca4ae20$6400a8c0@thinkpad> found this pretty interesting ... http://news.com.com/2100-7344_3-5173101.html -snip- MySQL plans to announce a higher-end addition next month that will allow more than one instance of its open-source database to take over if another fails. -snip- would be nice if the failover can completely eliminate the need for error handling eh? j/k :-) - jon pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 From danielc at analysisandsolutions.com Tue Mar 16 00:28:24 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 16 Mar 2004 00:28:24 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #240 php stuff Message-ID: <20040316052823.GA6506@panix.com> Invision Power Board Error Message Path Disclosure Vulnerabi... http://www.securityfocus.com/bid/9810 Invision Power Board Pop Parameter Cross-Site Scripting Vuln... http://www.securityfocus.com/bid/9822 VirtuaSystems VirtuaNews Admin.PHP Cross-Site Scripting Vuln... http://www.securityfocus.com/bid/9819 VirtuaSystems VirtuaNews Multiple Module Cross-Site Scriptin... http://www.securityfocus.com/bid/9812 Confixx DB Parameter SQL Injection Vulnerability http://www.securityfocus.com/bid/9830 -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From leam at reuel.net Tue Mar 16 07:01:35 2004 From: leam at reuel.net (leam) Date: Tue, 16 Mar 2004 07:01:35 -0500 Subject: [nycphp-talk] Re: [nycphp-jobs] PHP job opening In-Reply-To: <20040312173845.28996d11.felix@students.poly.edu> References: <20040312222823.GA15513@panix.com> <20040312173845.28996d11.felix@students.poly.edu> Message-ID: <4056EC9F.7050406@reuel.net> felix zaslavskiy wrote: > I am thick and tired of these elitist job postings. > > Most people who are familiar with my work know I can accomplish pretty > anything. But again my resume would not even pass the small test in this > case. > > Maybe the guy who wrote this didn't get the memo that php is relatively > easy language and that its no c++. Its also not so hard to create a web > base report from a database. Its not like you have to create complicated > statistical models. There is absolutely nothing in this description > that would suggest that its nothing more then an entry-level position > form someone out of school. Felix, I don't know you personally so let me disagree with you in a friendly fashion. This seems to be a job for a mature programmer, one who knows his or her own mistakes and doesn't take the easy way out or assume risks for speed. They mention database skills and financials; ergo any sloppy code or "quick fix" could enter bad data or leave sensitive info laying around in the open. It is a growth item to be able to see the ramifications of your code and evaluate what you want to get done *and* what gets left around afterwards. And to rigorously test before deploying to critical business systems. If they hired a junior person as lead for this I'd doubt the company would stay in business long, or keep the junior person. ciao! leam From agfische at email.smith.edu Tue Mar 16 08:49:59 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 08:49:59 -0500 Subject: [nycphp-talk] security, sessions, and encryption Message-ID: Hi all, I'm working up a little application that will require password authentication to gain entry into the site. The login page will query the username/password information that is stored in a MySQL table. I plan on using sessions to enable the authorized user to travel around the site and also to prevent an unauthorized user from gaining access to the site. My main questions revolves around encryption. The sources that I have been referencing advocate for encrypting the password during the authentication process. However, I've been frustrated by how briefly this topic is passed over in my books. The little application that I am working on now only has fairly low level security needs and encryption may be overkill, but I have another project coming down the line where the security needs will be greater, so I might as well get started learning this stuff now! Like, one question I have is, why encrypt? What am I preventing from happening? In general I am interested in what methods of securing an application folks recommend. I'd like to read up about general theories on protection and types of misuse/attacks as well as learn about specific methods of protection. I'd also be interested in hearing references for good books that deal with security (shameless plugs are welcome). The two methods I have seen recommended so far are: 1. MySQL encryption via "password" function: A preexisting script I inherited uses this method where the form submission is encrypted in the SQL query statement. "select * from tablename where name = '$_POST[name] and pass = password('$_POST['password'])"; So, the password is encrypted using MySQL's password encryption and is compared to the encrypted version stored in the table. However, when I read the MySQL documentation, I came across these lines: "Note: The PASSWORD() function is used by the authentication system in MySQL Server, you should NOT use it in your own applications. For that purpose, use MD5() or SHA1() instead. Also see RFC-2195 for more information about handling passwords and authentication securely in your application." So, it seems that this method is a no-no. 2. Encrypt using php, which can use the available encryption methods which are available on the server operating system. In the book that recommends using crypt() my issue is that it doesn't explain how it is working or what's going on behind the scenes and I haven't been able to find good documentation online that will help me either. The crypt() code line in the book is: "if ( (crypt($password, $result[password])) == $result[password]) { // start session I'd appreciate any feedback on the afore-mentioned methods, as well as book or online resource references. Cheers, -Aaron From jonbaer at jonbaer.net Tue Mar 16 08:57:56 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 08:57:56 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #240 php stuff References: <20040316052823.GA6506@panix.com> Message-ID: <007a01c40b5e$af34c900$6400a8c0@thinkpad> Hi Dan ... Thank you for posting the info (im on bugtraq and it gets crazy with everything), normally I keep an eye on packages Im using, is there any way (that you know of) to get alerts/emails pertaining to only those packages (or linked packages?) ... I have not seen anything like this ... I had been thinking that site:securityfocus.com in a google news alert would work (http://www.google.com/newsalerts) but it didn't. Thoughts? (Dan how do you keep tabs on security issues w/ Invision board for http://forums.nyphp.org?) - Jon ----- Original Message ----- From: "Daniel Convissor" To: "NYPHP Talk" Sent: Tuesday, March 16, 2004 12:28 AM Subject: [nycphp-talk] SecurityFocus Newsletter #240 php stuff From Rafi.Sheikh at Ingenix.com Tue Mar 16 09:02:13 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Tue, 16 Mar 2004 08:02:13 -0600 Subject: [nycphp-talk] creating unique array per row Message-ID: Hi list. BASIC: Apache 1.3.29, PHP 4.3.4, MySQL 4 on WIN2K-Pro BACKGROUND: Need to create multiple line graph (no x axis value but multiple Y-axis values) using JPGRPAH. PROBLEM: I have a table of fixed # of col. (6) with fixed # of rows (6). How do I get the data from MySQL and create one unique array for each row (ea. row -> one new array -> plot for one line) DATA EXAMPLE: Category val1 val2 VAL3 abc 89 78 99 efg 99 90 91 hij 100 99 90 Note: Trying to have abc, efg, hij as Y-axis separate data plot-in this case I will have 3 arrays to create 3 lines on a graph. Any help is absolutley appreciated! Heck I will even name the code and app after you! RS This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From jonbaer at jonbaer.net Tue Mar 16 09:05:54 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 09:05:54 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: Message-ID: <008001c40b5f$cc6cd660$6400a8c0@thinkpad> > started learning this stuff now! Like, one question I have is, why > encrypt? What am I preventing from happening? the best lesson you can give yourself is by downloading and firing up a free packet analysis tool like Ethereal (www.ethereal.com) or my favorite Packetyzer (http://www.networkchemistry.com/products/packetyzer/) and watch what really happens between your client/browers and server/apache/php/mysql, if somewhere along thoses lines you capture your own application password it would be wise to think about starting to encrypt ... - jon From jim at bizcomputinginc.com Tue Mar 16 09:23:01 2004 From: jim at bizcomputinginc.com (Jim Hendricks) Date: Tue, 16 Mar 2004 09:23:01 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: Message-ID: <00a901c40b62$300f0dd0$6801a8c0@BizComputing> Let me start by saying I am not a security expert, and therefore what follows is just opinion based on my own 20 years of experience in software development. > My main questions revolves around encryption. The sources that I have > been referencing advocate for encrypting the password during the > authentication process. However, I've been frustrated by how briefly > this topic is passed over in my books. The little application that I > am working on now only has fairly low level security needs and > encryption may be overkill, but I have another project coming down the > line where the security needs will be greater, so I might as well get > started learning this stuff now! Like, one question I have is, why > encrypt? What am I preventing from happening? The purpose of encryption during the authentication process depends on when in the process you are encrypting, and what your underlying application structure is. Back in the days of an application running on a standalone machine where the password didn't transport over a network, the purpose was solely for data security. In today's applications where passwords are passing over an insecure network you have the dual purpose of data security and application security. If the password is encrypted on the client machine before it is passed to the webserver, you are attempting to keep you application secure from net lurkers who may scoop up the uid/pw and then gain access to your application as a valid user. If the password is not encrypted until it is on the server you are fufilling data security. If all the passwords are encrypted in the database, you provide an additional security in that anyone who may gain access to the db does not automatically gain access to the ability to spoof your valid users. My own pet choice of encryption is a simple RC4 encryption where I generate a few random characters + password + personal key as the data stream, then encrypt this with the users password. In this case, I need to be able to decrypt the password coming from the browser so that I can attempt to decrypt the stored password. On successful decryption of the stored password the code can verify the success based on the password portion of the plaintext matching the password used to decrypt. The random characters serve to ensure that 2 users with the same password do not generate the same ciphertext and thereby allow someone with db access the ability to guess at a password based on visual patterns in the cipher text between users. The purpose of the personal key allows for secure storage of a generated key for each user. This key can then be used to encrypt sensitive data that only the specified user may view. Once again the prying eyes of a db admin would not be able to view that sensitive data because the key to decrypt is itself encrypted with a key with which the db admin does not have access to. The downside to the approach I just mentioned is that if the user forgets their password, they must be issued a new password, the old password is non-recoverable. Any data encrypted with the personal key secured by the old password is now also unrecoverable. That is why when I need the added security of personal keys and sensitive data encryption, I build an admin store which contains all the personal keys encrypted with the admin's key. Access to the data can still be lost, but it would happen only if the admin loses access to their personal key which happens much less often than a user losing a key. Once again remember, this is my own design and is not based on years of experience in security, but in application development. So far I have never had a breach that I have been made aware of, now weather that is luck, or luck in a good design, I couldn't tell ya'. Jim From jsiegel1 at optonline.net Tue Mar 16 09:28:30 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 09:28:30 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: References: Message-ID: <40570F0E.9080802@optonline.net> For login purposes, I have people log in through SSL and have their passwords encrypted using "crypt." Crypt does a one-way encryption so you encrypt their password that they input on the form and compare it to what's stored in the database. (Basically no. 2 in your list.) If someone should somehow gain access to the database or some other catastrophe might occur, they'd see something like the following in your table's password field: LSoxL6eUJCUYg. (Of course, if someone gained access to your database...you've got bigger issues to handle.) Jeff Siegel Aaron Fischer wrote: > Hi all, > > I'm working up a little application that will require password > authentication to gain entry into the site. The login page will query > the username/password information that is stored in a MySQL table. I > plan on using sessions to enable the authorized user to travel around > the site and also to prevent an unauthorized user from gaining access to > the site. > > My main questions revolves around encryption. The sources that I have > been referencing advocate for encrypting the password during the > authentication process. However, I've been frustrated by how briefly > this topic is passed over in my books. The little application that I am > working on now only has fairly low level security needs and encryption > may be overkill, but I have another project coming down the line where > the security needs will be greater, so I might as well get started > learning this stuff now! Like, one question I have is, why encrypt? > What am I preventing from happening? > > In general I am interested in what methods of securing an application > folks recommend. I'd like to read up about general theories on > protection and types of misuse/attacks as well as learn about specific > methods of protection. I'd also be interested in hearing references for > good books that deal with security (shameless plugs are welcome). > > The two methods I have seen recommended so far are: > > 1. MySQL encryption via "password" function: > A preexisting script I inherited uses this method where the form > submission is encrypted in the SQL query statement. > "select * from tablename where name = '$_POST[name] and pass = > password('$_POST['password'])"; > So, the password is encrypted using MySQL's password encryption and is > compared to the encrypted version stored in the table. However, when I > read the MySQL documentation, I came across these lines: > "Note: The PASSWORD() function is used by the authentication system > in MySQL Server, you should NOT use it in your own applications. For > that purpose, use MD5() or SHA1() instead. Also see RFC-2195 for more > information about handling passwords and authentication securely in your > application." > So, it seems that this method is a no-no. > > 2. Encrypt using php, which can use the available encryption methods > which are available on the server operating system. In the book that > recommends using crypt() my issue is that it doesn't explain how it is > working or what's going on behind the scenes and I haven't been able to > find good documentation online that will help me either. The crypt() > code line in the book is: > "if ( (crypt($password, $result[password])) == $result[password]) { > // start session > > I'd appreciate any feedback on the afore-mentioned methods, as well as > book or online resource references. > > Cheers, > > -Aaron > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From henry at beewh.com Tue Mar 16 06:29:07 2004 From: henry at beewh.com (Henry Ponce) Date: Tue, 16 Mar 2004 11:29:07 +0000 Subject: [nycphp-talk] creating unique array per row In-Reply-To: References: Message-ID: <200403161129.07440.henry@beewh.com> You could do something like this $q = "select * from table_name"; $result = mysql_query($q); $table_rows = array (); //array of arrays $cont = 0; //counter while ($row = mysql_fetch_array($result)){ $table_rows [$cont] = $row; //adds the array to the array $cont++; //increment the counter } After this $table_rows will be an array of arrays. The while structure adds an array ($row) for each row in your table (table_name). You can get the values with a for{} structure if you wish. Hope this helps, Henry On Tuesday 16 March 2004 14:02, Rafi Sheikh wrote: > Hi list. > > BASIC: Apache 1.3.29, PHP 4.3.4, MySQL 4 on WIN2K-Pro > BACKGROUND: > Need to create multiple line graph (no x axis value but > multiple Y-axis values) using JPGRPAH. > PROBLEM: > I have a table of fixed # of col. (6) with fixed # of rows > (6). How do I get the data from MySQL and create one unique array for each > row (ea. row -> one new array -> plot for one line) > > DATA EXAMPLE: > Category val1 val2 VAL3 > abc 89 78 99 > efg 99 90 91 > hij 100 99 90 > > Note: Trying to have abc, efg, hij as Y-axis separate data plot-in this > case I will have 3 arrays to create 3 lines on a graph. > > Any help is absolutley appreciated! Heck I will even name the code and app > after you! > > RS > > > > > This e-mail, including attachments, may include confidential and/or > proprietary information, and may be used only by the person or entity to > which it is addressed. If the reader of this e-mail is not the intended > recipient or his or her authorized agent, the reader is hereby notified > that any dissemination, distribution or copying of this e-mail is > prohibited. If you have received this e-mail in error, please notify the > sender by replying to this message and delete this e-mail immediately. > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From agfische at email.smith.edu Tue Mar 16 09:39:43 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 09:39:43 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <008001c40b5f$cc6cd660$6400a8c0@thinkpad> References: <008001c40b5f$cc6cd660$6400a8c0@thinkpad> Message-ID: Thanks Jon, I'll check those out. I can work with Windows if I have to, but... do you happen to know of a good one that will run on Mac OS X? -Aaron On Mar 16, 2004, at 9:05 AM, jon baer wrote: >> started learning this stuff now! Like, one question I have is, why >> encrypt? What am I preventing from happening? > > the best lesson you can give yourself is by downloading and firing up > a free > packet analysis tool like Ethereal (www.ethereal.com) or my favorite > Packetyzer (http://www.networkchemistry.com/products/packetyzer/) and > watch > what really happens between your client/browers and > server/apache/php/mysql, > if somewhere along thoses lines you capture your own application > password it > would be wise to think about starting to encrypt ... > > - jon From jonbaer at jonbaer.net Tue Mar 16 09:47:59 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 09:47:59 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: <008001c40b5f$cc6cd660$6400a8c0@thinkpad> Message-ID: <00d701c40b65$ad112180$6400a8c0@thinkpad> If im not mistaken tcpdump should come w/ OS X ... try typing "which tcpdump" in command line to see what you get, there are frontends, google for "MacSniffer" or if your daring + have time to kill try to compile ettercap for Mac (http://ettercap.sourceforge.net/) as it will provide you with more security testing tools than you will ever need ... _ Jon ----- Original Message ----- From: "Aaron Fischer" To: "NYPHP Talk" Sent: Tuesday, March 16, 2004 9:39 AM Subject: Re: [nycphp-talk] security, sessions, and encryption > Thanks Jon, I'll check those out. I can work with Windows if I have > to, but... do you happen to know of a good one that will run on Mac OS > X? From agfische at email.smith.edu Tue Mar 16 09:53:52 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 09:53:52 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00d701c40b65$ad112180$6400a8c0@thinkpad> References: <008001c40b5f$cc6cd660$6400a8c0@thinkpad> <00d701c40b65$ad112180$6400a8c0@thinkpad> Message-ID: typing "which tcpdump" on command line returns: /usr/sbin/tcpdump Which I'm guessing indicates that tcpdump is installed and available. I found MacSniffer on version tracker. Sweet, thanks! -Aaron On Mar 16, 2004, at 9:47 AM, jon baer wrote: > If im not mistaken tcpdump should come w/ OS X ... try typing "which > tcpdump" in command line to see what you get, there are frontends, > google > for "MacSniffer" or if your daring + have time to kill try to compile > ettercap for Mac (http://ettercap.sourceforge.net/) as it will provide > you > with more security testing tools than you will ever need ... > > _ Jon From agfische at email.smith.edu Tue Mar 16 09:48:52 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 09:48:52 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <40570F0E.9080802@optonline.net> References: <40570F0E.9080802@optonline.net> Message-ID: <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> OK, so: 1. SSL protects the data from being sniffed out as it goes from the form on the client machine to the server. This seems to be the only way, or at least the best way to prevent the data from being transmitted in the clear? 2. When you crypt their password to compare it to the one stored in the database, and it's a one way encryption, that means that the password stored in your database has been put in via crypt as well at some point, correct? -Aaron On Mar 16, 2004, at 9:28 AM, Jeff Siegel wrote: > For login purposes, I have people log in through SSL and have their > passwords encrypted using "crypt." Crypt does a one-way encryption so > you encrypt their password that they input on the form and compare it > to what's stored in the database. (Basically no. 2 in your list.) > > If someone should somehow gain access to the database or some other > catastrophe might occur, they'd see something like the following in > your table's password field: LSoxL6eUJCUYg. (Of course, if someone > gained access to your database...you've got bigger issues to handle.) > > Jeff Siegel > > Aaron Fischer wrote: > >> Hi all, >> I'm working up a little application that will require password >> authentication to gain entry into the site. The login page will >> query the username/password information that is stored in a MySQL >> table. I plan on using sessions to enable the authorized user to >> travel around the site and also to prevent an unauthorized user from >> gaining access to the site. >> My main questions revolves around encryption. The sources that I >> have been referencing advocate for encrypting the password during the >> authentication process. However, I've been frustrated by how briefly >> this topic is passed over in my books. The little application that I >> am working on now only has fairly low level security needs and >> encryption may be overkill, but I have another project coming down >> the line where the security needs will be greater, so I might as well >> get started learning this stuff now! Like, one question I have is, >> why encrypt? What am I preventing from happening? >> In general I am interested in what methods of securing an application >> folks recommend. I'd like to read up about general theories on >> protection and types of misuse/attacks as well as learn about >> specific methods of protection. I'd also be interested in hearing >> references for good books that deal with security (shameless plugs >> are welcome). >> The two methods I have seen recommended so far are: >> 1. MySQL encryption via "password" function: >> A preexisting script I inherited uses this method where the form >> submission is encrypted in the SQL query statement. >> "select * from tablename where name = '$_POST[name] and pass = >> password('$_POST['password'])"; >> So, the password is encrypted using MySQL's password encryption and >> is compared to the encrypted version stored in the table. However, >> when I read the MySQL documentation, I came across these lines: >> "Note: The PASSWORD() function is used by the authentication >> system in MySQL Server, you should NOT use it in your own >> applications. For that purpose, use MD5() or SHA1() instead. Also see >> RFC-2195 for more information about handling passwords and >> authentication securely in your application." >> So, it seems that this method is a no-no. >> 2. Encrypt using php, which can use the available encryption methods >> which are available on the server operating system. In the book that >> recommends using crypt() my issue is that it doesn't explain how it >> is working or what's going on behind the scenes and I haven't been >> able to find good documentation online that will help me either. The >> crypt() code line in the book is: >> "if ( (crypt($password, $result[password])) == $result[password]) >> { // start session >> I'd appreciate any feedback on the afore-mentioned methods, as well >> as book or online resource references. >> Cheers, >> -Aaron From agfische at email.smith.edu Tue Mar 16 10:03:01 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 10:03:01 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00a901c40b62$300f0dd0$6801a8c0@BizComputing> References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing> Message-ID: <051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu> On Mar 16, 2004, at 9:23 AM, Jim Hendricks wrote: > The purpose of encryption during the authentication process depends on > when in the process you are encrypting, and what your underlying > application > structure is. > > Back in the days of an application running on a standalone machine > where > the password didn't transport over a network, the purpose was solely > for > data security. In today's applications where passwords are passing > over > an insecure network you have the dual purpose of data security and > application > security. If the password is encrypted on the client machine before it > is passed to the webserver, you are attempting to keep you application > secure > from net lurkers who may scoop up the uid/pw and then gain access to > your > application as a valid user. Encrypting on the client machine is best done with SSL? > If the password is not encrypted until it is > on the > server you are fufilling data security. If all the passwords are > encrypted > in the > database, you provide an additional security in that anyone who may > gain > access to the db does not automatically gain access to the ability to > spoof > your valid users. These are great distinctions, thanks. > My own pet choice of encryption is a simple RC4 > encryption > where I generate a few random characters + password + personal key as > the > data stream, then encrypt this with the users password. In this case, > I > need > to be able to decrypt the password coming from the browser so that I > can > attempt to decrypt the stored password. On successful decryption of > the > stored password the code can verify the success based on the password > portion of the plaintext matching the password used to decrypt. > > The random characters serve to ensure that 2 users with the same > password > do not generate the same ciphertext and thereby allow someone with db > access the ability to guess at a password based on visual patterns in > the > cipher text between users. The purpose of the personal key allows for > secure storage of a generated key for each user. This key can then be > used > to encrypt sensitive data that only the specified user may view. Once > again > the prying eyes of a db admin would not be able to view that sensitive > data > because the key to decrypt is itself encrypted with a key with which > the db > admin does not have access to. > > The downside to the approach I just mentioned is that if the user > forgets > their password, they must be issued a new password, the old password is > non-recoverable. Any data encrypted with the personal key secured by > the > old password is now also unrecoverable. That is why when I need the > added > security of personal keys and sensitive data encryption, I build an > admin > store > which contains all the personal keys encrypted with the admin's key. > Access > to the data can still be lost, but it would happen only if the admin > loses > access > to their personal key which happens much less often than a user losing > a > key. > Whew, at least some of that was over my head at this point, but it gives me something to chew on! > Once again remember, this is my own design and is not based on years of > experience in security, but in application development. So far I have > never > had > a breach that I have been made aware of, now weather that is luck, or > luck > in > a good design, I couldn't tell ya'. > > Jim From enunez at tiaa-cref.org Tue Mar 16 10:19:12 2004 From: enunez at tiaa-cref.org (Nunez, Eddy) Date: Tue, 16 Mar 2004 10:19:12 -0500 Subject: [nycphp-talk] Apache spawning 2 CGIs processes Message-ID: <7CE0EC1FC2D0D411910700508BE38D0F0A6D9E93@msxnyusr01.msx.ops.tiaa-cref.org> Maybe someone has some experience with this.... Anyone have a clue why Apache would spawn 2 processes of the same CGI script from a single HTTP request? I checked the CGI script and there is no fork() so it's not that. What else could it be? Help is appreciated, thxs! -EAN ************************************************************** This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is protected by law. If you are not the intended recipient, please contact sender immediately by reply e-mail and destroy all copies. You are hereby notified that any disclosure, copying, or distribution of this message, or the taking of any action based on it, is strictly prohibited. TIAA-CREF ************************************************************** -------------- next part -------------- An HTML attachment was scrubbed... URL: From jsiegel1 at optonline.net Tue Mar 16 10:23:34 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 10:23:34 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> References: <40570F0E.9080802@optonline.net> <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> Message-ID: <40571BF6.9030003@optonline.net> Re: No. 2. Correct! So if you've got a form for adding new site users, it would store their password in encrypted form. Jeff Aaron Fischer wrote: > OK, so: > > 1. SSL protects the data from being sniffed out as it goes from the > form on the client machine to the server. This seems to be the only > way, or at least the best way to prevent the data from being transmitted > in the clear? > 2. When you crypt their password to compare it to the one stored in the > database, and it's a one way encryption, that means that the password > stored in your database has been put in via crypt as well at some point, > correct? > > -Aaron > > On Mar 16, 2004, at 9:28 AM, Jeff Siegel wrote: > >> For login purposes, I have people log in through SSL and have their >> passwords encrypted using "crypt." Crypt does a one-way encryption so >> you encrypt their password that they input on the form and compare it >> to what's stored in the database. (Basically no. 2 in your list.) >> >> If someone should somehow gain access to the database or some other >> catastrophe might occur, they'd see something like the following in >> your table's password field: LSoxL6eUJCUYg. (Of course, if someone >> gained access to your database...you've got bigger issues to handle.) >> >> Jeff Siegel >> >> Aaron Fischer wrote: >> >>> Hi all, >>> I'm working up a little application that will require password >>> authentication to gain entry into the site. The login page will >>> query the username/password information that is stored in a MySQL >>> table. I plan on using sessions to enable the authorized user to >>> travel around the site and also to prevent an unauthorized user from >>> gaining access to the site. >>> My main questions revolves around encryption. The sources that I >>> have been referencing advocate for encrypting the password during the >>> authentication process. However, I've been frustrated by how briefly >>> this topic is passed over in my books. The little application that I >>> am working on now only has fairly low level security needs and >>> encryption may be overkill, but I have another project coming down >>> the line where the security needs will be greater, so I might as well >>> get started learning this stuff now! Like, one question I have is, >>> why encrypt? What am I preventing from happening? >>> In general I am interested in what methods of securing an application >>> folks recommend. I'd like to read up about general theories on >>> protection and types of misuse/attacks as well as learn about >>> specific methods of protection. I'd also be interested in hearing >>> references for good books that deal with security (shameless plugs >>> are welcome). >>> The two methods I have seen recommended so far are: >>> 1. MySQL encryption via "password" function: >>> A preexisting script I inherited uses this method where the form >>> submission is encrypted in the SQL query statement. >>> "select * from tablename where name = '$_POST[name] and pass = >>> password('$_POST['password'])"; >>> So, the password is encrypted using MySQL's password encryption and >>> is compared to the encrypted version stored in the table. However, >>> when I read the MySQL documentation, I came across these lines: >>> "Note: The PASSWORD() function is used by the authentication >>> system in MySQL Server, you should NOT use it in your own >>> applications. For that purpose, use MD5() or SHA1() instead. Also see >>> RFC-2195 for more information about handling passwords and >>> authentication securely in your application." >>> So, it seems that this method is a no-no. >>> 2. Encrypt using php, which can use the available encryption methods >>> which are available on the server operating system. In the book that >>> recommends using crypt() my issue is that it doesn't explain how it >>> is working or what's going on behind the scenes and I haven't been >>> able to find good documentation online that will help me either. The >>> crypt() code line in the book is: >>> "if ( (crypt($password, $result[password])) == $result[password]) >>> { // start session >>> I'd appreciate any feedback on the afore-mentioned methods, as well >>> as book or online resource references. >>> Cheers, >>> -Aaron > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From corey at domanistudios.com Tue Mar 16 10:28:03 2004 From: corey at domanistudios.com (corey szopinski) Date: Tue, 16 Mar 2004 10:28:03 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00d701c40b65$ad112180$6400a8c0@thinkpad> Message-ID: Aaron- As a fellow mac guy, I?ve had good luck with Apple?s X11 application and Ethereal. I believe I installed ethereal via Fink, which was a snap, and X11 is a free download from apple. -corey On 3/16/04 9:47 AM, "jon baer" wrote: > If im not mistaken tcpdump should come w/ OS X ... try typing "which > tcpdump" in command line to see what you get, there are frontends, google > for "MacSniffer" or if your daring + have time to kill try to compile > ettercap for Mac (http://ettercap.sourceforge.net/) as it will provide you > with more security testing tools than you will ever need ... > > _ Jon > > ----- Original Message ----- > From: "Aaron Fischer" > To: "NYPHP Talk" > Sent: Tuesday, March 16, 2004 9:39 AM > Subject: Re: [nycphp-talk] security, sessions, and encryption > > >> > Thanks Jon, I'll check those out. I can work with Windows if I have >> > to, but... do you happen to know of a good one that will run on Mac OS >> > X? > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk DOMANI STUDIOS Corey Szopinski Technology Director corey at domanistudios.com 70 Washington St. Suite 710 Brooklyn, NY 11201 718.797.4470 x116 -------------- next part -------------- An HTML attachment was scrubbed... URL: From sklar at sklar.com Tue Mar 16 10:28:23 2004 From: sklar at sklar.com (David Sklar) Date: Tue, 16 Mar 2004 10:28:23 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> References: <40570F0E.9080802@optonline.net> <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> Message-ID: <40571D17.5010501@sklar.com> > 1. SSL protects the data from being sniffed out as it goes from the > form on the client machine to the server. This seems to be the only > way, or at least the best way to prevent the data from being transmitted > in the clear? You're correct about what SSL does. However, another way to prevent the data from being transmitted in the clear is to encrypt it (with Javascript) before it is sent to the server. http://pajhome.org.uk/crypt/md5/ has some links and demos of encryption with Javascript. With this method, the data passes in the clear to the server, but a sniffer sees the encrypted version of the password instead of the real password. The downsides of this method: - the user must have Javascript turned on - a sniffer could capture the entire session and replay it to pretend to be a valid user To prevent the capture and replay, you'd need to put something *else* in the form that is unique each time you present the log in form. That way, if you see a duplicate on the server, you know that it's an invalid form submission. If you (or your ISP) can flip a switch and enable SSL on your server, it's simpler (no changes required in your pages) and more standard. If for some reason you can't use SSL, all this Javascript whatnot can be helpful. > 2. When you crypt their password to compare it to the one stored in the > database, and it's a one way encryption, that means that the password > stored in your database has been put in via crypt as well at some point, > correct? Yes. The logic in your account signup page might look something like if (form_is_submitted() && form_data_is_valid()) { $encrypted_password = crypt($_POST['password']); db_query("INSERT INTO users (username,password) VALUES ('$_POST[username]','$encrypted_password'); print "You're all signed up now."; } David From jim at bizcomputinginc.com Tue Mar 16 10:35:41 2004 From: jim at bizcomputinginc.com (Jim Hendricks) Date: Tue, 16 Mar 2004 10:35:41 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing> <051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu> Message-ID: <00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing> > Encrypting on the client machine is best done with SSL? Yes. The only other success I have had is using a JavaScript to encrypt the pw & place in the pw field. The problem with this is ... JavaScript. > These are great distinctions, thanks. Your welcome. > Whew, at least some of that was over my head at this point, but it > gives me something to chew on! Let me make it simpler through example. Credit Cards many times need to be stored, but the User gets a warm fuzzy if they know that their card data is encrypted in a way that can only be accessed by them. If on creating the user I generate a random alphanumeric string, I can use this string to encrypt the credit card data. The only problem is how do I store the random string in a way that can only be used by the user associated with the card? That is why I post pend it onto the users password prior to encrypting the password. Since only the user should have their password, only the user can decrypt the random string key, and therefore only the user can decrypt their credit card data. In reality, you can achieve the same thing if you use the users password, preferably in plaintext as the key to encrypting data like CC's, but the random generated string adds an extra layer of protection. If you were to use the ciphertext version of the password( ie. what is saved in your user table ) the CC data can be decrypted via a scan of the users, decrypting the cc data with each users ciphertext password until the CC data decrypts to something that makes sense. The Random characters I prepend to the password before encryption and storage is due to the encryption (RC4). RC4 generates the same ciphertext given the same plaintext/key. If I have 2 users with the password 'password', even though I am post pending the randomly generated string to use as a personal key, the 1st 8 characters of my plaintext will be the same and will therefore generate the same 1st 8 characters of ciphertext. If I know that the 1st 3 characters are random in the plaintext, I can be reasonably assured that there will be no discernable patterns in the stored ciphertext. Finally, my choice of RC4 is due to it's simplicity in implementing yourself while providing a reasonable amount of security. Many languages now also have RC4 built in. I don't know if PHP does since I had RC4 already written in VBScript so it was an easy port to PHP and I still use my own implementation. From agfische at email.smith.edu Tue Mar 16 10:41:34 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 10:41:34 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: References: Message-ID: <6797F7BE-7760-11D8-A6E7-0003930D07F2@email.smith.edu> I've got X11 installed. I was playing around with OpenOffice for a bit. Thanks for the tip re. Fink and Ethereal! -Aaron On Mar 16, 2004, at 10:28 AM, corey szopinski wrote: > Aaron- > > As a fellow mac guy, I?ve had good luck with Apple?s X11 application > and Ethereal. I believe I installed ethereal via Fink, which was a > snap, and X11 is a free download from apple. > > -corey > > > > On 3/16/04 9:47 AM, "jon baer" wrote: > > > If im not mistaken tcpdump should come w/ OS X ... try typing "which > tcpdump" in command line to see what you get, there are frontends, > google > for "MacSniffer" or if your daring + have time to kill try to compile > ettercap for Mac (http://ettercap.sourceforge.net/) as it will > provide you > with more security testing tools than you will ever need ... > > _ Jon > > ----- Original Message ----- > From: "Aaron Fischer" > To: "NYPHP Talk" > Sent: Tuesday, March 16, 2004 9:39 AM > Subject: Re: [nycphp-talk] security, sessions, and encryption > > > > Thanks Jon, I'll check those out. ?I can work with Windows if I have > > to, but... ?do you happen to know of a good one that will run on > Mac OS > > X? > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > > > DOMANI STUDIOS > > Corey Szopinski > Technology Director > ??? > corey at domanistudios.com > 70 Washington St. Suite 710 ? > Brooklyn, NY 11201 > 718.797.4470 ?x116 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From danielc at analysisandsolutions.com Tue Mar 16 10:57:51 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 16 Mar 2004 10:57:51 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #240 php stuff In-Reply-To: <007a01c40b5e$af34c900$6400a8c0@thinkpad> References: <20040316052823.GA6506@panix.com> <007a01c40b5e$af34c900$6400a8c0@thinkpad> Message-ID: <20040316155751.GA11246@panix.com> Hi Jon: On Tue, Mar 16, 2004 at 08:57:56AM -0500, jon baer wrote: > > Thank you for posting the info (im on bugtraq and it gets crazy with > everything) I can imagine. Getting the weekly summary, which is what I do, seems a handy way to reduce that clutter. If you want a more timely alert for specific packages, one could subscribe to bugtraq and run the incomming emails throug procmail (or some other filtering mechanism). If the item's subject matches your criteria, pass it along. If not, dump it. Crude, but it'll generally work. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From agfische at email.smith.edu Tue Mar 16 11:06:03 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 11:06:03 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <40571D17.5010501@sklar.com> References: <40570F0E.9080802@optonline.net> <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> <40571D17.5010501@sklar.com> Message-ID: I'm hopeful that my IT dept. will be able to flip the switch on SSL, if they haven't already. I've really moved away from JavaScript for the express reason of the unpredictability of the user having it on or off. That's good info though, as a backup to the SSL option. Thanks! This sort of begs the question, what IS JavaScript good for, besides perhaps image rollovers... =) -Aaron On Mar 16, 2004, at 10:28 AM, David Sklar wrote: > You're correct about what SSL does. However, another way to prevent > the data from being transmitted in the clear is to encrypt it (with > Javascript) before it is sent to the server. > > http://pajhome.org.uk/crypt/md5/ has some links and demos of > encryption with Javascript. > > With this method, the data passes in the clear to the server, but a > sniffer sees the encrypted version of the password instead of the real > password. > > The downsides of this method: > - the user must have Javascript turned on > - a sniffer could capture the entire session and replay it > to pretend to be a valid user > > To prevent the capture and replay, you'd need to put something *else* > in the form that is unique each time you present the log in form. That > way, if you see a duplicate on the server, you know that it's an > invalid form submission. > > If you (or your ISP) can flip a switch and enable SSL on your server, > it's simpler (no changes required in your pages) and more standard. If > for some reason you can't use SSL, all this Javascript whatnot can be > helpful. From Cbielanski at inta.org Tue Mar 16 10:24:56 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Tue, 16 Mar 2004 10:24:56 -0500 Subject: [nycphp-talk] Apache spawning 2 CGIs processes Message-ID: Snap answer: check for system() or exec() calls if the script is in PHP or Perl. ~Chris -----Original Message----- From: Nunez, Eddy [mailto:enunez at tiaa-cref.org] Sent: Tuesday, March 16, 2004 10:19 AM To: 'talk at lists.nyphp.org' Subject: [nycphp-talk] Apache spawning 2 CGIs processes Maybe someone has some experience with this.... Anyone have a clue why Apache would spawn 2 processes of the same CGI script from a single HTTP request? I checked the CGI script and there is no fork() so it's not that. What else could it be? Help is appreciated, thxs! -EAN ************************************************************** This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is protected by law. If you are not the intended recipient, please contact sender immediately by reply e-mail and destroy all copies. You are hereby notified that any disclosure, copying, or distribution of this message, or the taking of any action based on it, is strictly prohibited. TIAA-CREF ************************************************************** -------------- next part -------------- An HTML attachment was scrubbed... URL: From shiflett at php.net Tue Mar 16 11:19:08 2004 From: shiflett at php.net (Chris Shiflett) Date: Tue, 16 Mar 2004 08:19:08 -0800 (PST) Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: Message-ID: <20040316161908.93114.qmail@web14303.mail.yahoo.com> --- Aaron Fischer wrote: > My main questions revolves around encryption. The sources that I > have been referencing advocate for encrypting the password during > the authentication process. This is probably because they recommend storing the digest of the password in the database, so that you must compare the digest of what the user enters to authenticate him/her. For example: 1. User registers for an account: username: myuser password: mypass 2. You perform md5($password) to get a029d0df84eb5549c641e04a9ef389e5. 3. You store the account in the database: username: myuser password: a029d0df84eb5549c641e04a9ef389e5 So, when you authenticate: 4. A user wants to login as myuser and provides mypass as the password. 5. You compare a029d0df84eb5549c641e04a9ef389e5 (what's in the database) with the md5 of what the user entered to validate the credentials. > The little application that I am working on now only has fairly low > level security needs and encryption may be overkill Encryption is a helpful thing when it comes to security, but only if you understand how it's helping. Just randomly throwing encryption into the mix rarely does you any good. An example (I think David mentioned this) is a replay attack, and I can give a hypothetical (but quite common) example. Some people have this strange idea that they should reauthenticate the user every visit instead of using sessions to track the user's state. So, to be safe, they store the user's username and password in a cookie (or a couple of cookies), and they encrypt the username, password, both, or some cool string they think of that also contains secret words. They may end up with one crazy looking cookie: mycookie=q234c5?R~@r451xc3C%!R3ctr512%T%C "That's GOTTA be secure," they think to themselves. Keep in mind that they are authenticating on every visit, so this cookie doesn't require an active session or anything. Now, imagine that a poor user uses IE (users don't know any better), and their cookie gets exposed to whomever wants it. Now, a bad guy visits the site with: mycookie=q234c5?R~@r451xc3C%!R3ctr512%T%C Oops, not only did the bad guy just impersonate the poor IE user, the bad guy can do this anytime he/she wants. There's no need to even bother capturing this cookie ever again. Good thing it's encrypted, huh? :-) > Like, one question I have is, why encrypt? What am I preventing from > happening? Exposure. People often use sniffing as an example of what bad things can happen from exposure, but it's really just one example (and there's no need to brainstorm examples, since they're irrelevant in terms of determining whether exposure is bad). For any bit of data within your application, you want to keep up with: 1. Where the data is kept, where it travels, etc. Know your data. 2. Whether it *really* matters if the data is captured by a bad guy. For example, if your session mechanism is session_start() and nothing else, it does matter if the session identifier is captured. For a lot of data, it probably doesn't really matter, so exposure isn't a big deal. The worst that can happen from exposure is that the data is captured by a bad guy, so don't bother worrying about how the bad guy does it (unless you're just curious). > I'd also be interested in hearing references for good books that > deal with security (shameless plugs are welcome). I hope to have a shameless plug later this year. :-) I do have a monthly column in php|architect called Security Corner, and you can find a few articles on my Web site: http://shiflett.org/articles > 1. MySQL encryption via "password" function: MySQL's password function is version-specific, so this can be a problem. I think it's 4.1 where it changes, but maybe it's 5.0. > 2. Encrypt using php, which can use the available encryption methods > which are available on the server operating system. In the book that > recommends using crypt() crypt() is DES, and you might be interested in this book: http://www.amazon.com/exec/obidos/tg/detail/-/B00005R08F/qid=1079453570 Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From agfische at email.smith.edu Tue Mar 16 11:33:04 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 11:33:04 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing> References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing> <051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu> <00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing> Message-ID: <99999DD2-7767-11D8-A6E7-0003930D07F2@email.smith.edu> On Mar 16, 2004, at 10:35 AM, Jim Hendricks wrote: > Let me make it simpler through example. > > Credit Cards many times need to be stored, but the User gets a warm > fuzzy > if they know that their card data is encrypted in a way that can only > be > accessed > by them. If on creating the user I generate a random alphanumeric > string, I > can > use this string to encrypt the credit card data. This random alphanumeric string is know as the SALT, correct? > The only problem is how do > I > store the random string in a way that can only be used by the user > associated with > the card? That is why I post pend it onto the users password prior to > encrypting > the password. Since only the user should have their password, only > the user > can decrypt the random string key, and therefore only the user can > decrypt > their > credit card data. In reality, you can achieve the same thing if you > use the > users password, preferably in plaintext as the key to encrypting data > like > CC's, > but the random generated string adds an extra layer of protection. If > you > were to > use the ciphertext version of the password( ie. what is saved in your > user > table ) > the CC data can be decrypted via a scan of the users, decrypting the > cc data > with > each users ciphertext password until the CC data decrypts to something > that > makes > sense. > Got it, thanks! > The Random characters I prepend to the password before encryption and > storage is > due to the encryption (RC4). RC4 generates the same ciphertext given > the > same > plaintext/key. If I have 2 users with the password 'password', even > though > I am post > pending the randomly generated string to use as a personal key, the > 1st 8 > characters > of my plaintext will be the same and will therefore generate the same > 1st 8 > characters > of ciphertext. If I know that the 1st 3 characters are random in the > plaintext, I can > be reasonably assured that there will be no discernable patterns in the > stored ciphertext. > > Finally, my choice of RC4 is due to it's simplicity in implementing > yourself > while providing > a reasonable amount of security. Many languages now also have RC4 > built in. > I don't > know if PHP does since I had RC4 already written in VBScript so it was > an > easy port to > PHP and I still use my own implementation. Cool, thanks for the elaboration, that was quite helpful. -Aaron From danielc at analysisandsolutions.com Tue Mar 16 11:38:08 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 16 Mar 2004 11:38:08 -0500 Subject: [nycphp-talk] creating unique array per row In-Reply-To: <200403161129.07440.henry@beewh.com> References: <200403161129.07440.henry@beewh.com> Message-ID: <20040316163808.GA12079@panix.com> Hi Rafi: Henry's answer expands upon the answer I gave you the other day on your related question. Henry's change to accommodate your new question is to create an array of an array for each row. His code can be simplified a tad as well by dropping the $cont counter variable since PHP automatically assigns the keys... $table_rows = array (); while ($row = mysql_fetch_array($result)) { $table_rows[] = $row; } That could even be cut down a step by assigning the data directly... $table_rows = array (); while ($table_rows[] = mysql_fetch_array($result)); --Dan > After this $table_rows will be an array of arrays. The while structure adds an > array ($row) for each row in your table (table_name). > > You can get the values with a for{} structure if you wish. > > Hope this helps, > Henry > > On Tuesday 16 March 2004 14:02, Rafi Sheikh wrote: > > Hi list. > > > > BASIC: Apache 1.3.29, PHP 4.3.4, MySQL 4 on WIN2K-Pro > > BACKGROUND: > > Need to create multiple line graph (no x axis value but > > multiple Y-axis values) using JPGRPAH. > > PROBLEM: > > I have a table of fixed # of col. (6) with fixed # of rows > > (6). How do I get the data from MySQL and create one unique array for each > > row (ea. row -> one new array -> plot for one line) > > > > DATA EXAMPLE: > > Category val1 val2 VAL3 > > abc 89 78 99 > > efg 99 90 91 > > hij 100 99 90 > > > > Note: Trying to have abc, efg, hij as Y-axis separate data plot-in this > > case I will have 3 arrays to create 3 lines on a graph. > > > > Any help is absolutley appreciated! Heck I will even name the code and app > > after you! > > > > RS > > > > > > > > > > This e-mail, including attachments, may include confidential and/or > > proprietary information, and may be used only by the person or entity to > > which it is addressed. If the reader of this e-mail is not the intended > > recipient or his or her authorized agent, the reader is hereby notified > > that any dissemination, distribution or copying of this e-mail is > > prohibited. If you have received this e-mail in error, please notify the > > sender by replying to this message and delete this e-mail immediately. > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From jim at bizcomputinginc.com Tue Mar 16 11:40:41 2004 From: jim at bizcomputinginc.com (Jim Hendricks) Date: Tue, 16 Mar 2004 11:40:41 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing><051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu><00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing> <99999DD2-7767-11D8-A6E7-0003930D07F2@email.smith.edu> Message-ID: <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> > This random alphanumeric string is know as the SALT, correct? Honestly, you got me there, I'm not sure what SALT is unless your talking the condiment. My random alphanumeric string is to be used as a key for encryption of other data in the system. If your only need is to encrypt the user passwords, then this random alphanumeric string is of no benefit to you. From agfische at email.smith.edu Tue Mar 16 11:47:35 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 11:47:35 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing><051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu><00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing> <99999DD2-7767-11D8-A6E7-0003930D07F2@email.smith.edu> <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> Message-ID: Hehe, tho' it is getting to be time for lunch I'm not referring to the condiment. From php.net, in reference to crypt: string crypt ( string str [, string salt]) http://us3.php.net/manual/en/function.crypt.php My impression is that the salt is the string that you can provide to enable the encryption. In the case of crypt, if you don't provide one, one will be provided for you. Perhaps this isn't analogous to your RC4 method, as you are prepending the random string to the end of the the password and then encrypting... -Aaron On Mar 16, 2004, at 11:40 AM, Jim Hendricks wrote: >> This random alphanumeric string is know as the SALT, correct? > > Honestly, you got me there, I'm not sure what SALT is unless your > talking the condiment. My random alphanumeric string is to be used > as a key for encryption of other data in the system. If your only need > is to encrypt the user passwords, then this random alphanumeric > string is of no benefit to you. From jsiegel1 at optonline.net Tue Mar 16 11:56:33 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 11:56:33 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing> <051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu> <00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing> <99999DD2-7767-11D8-A6E7-0003930D07F2@email.smith.edu> <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> Message-ID: <405731C1.4080901@optonline.net> Crypt uses a "salt." See: php.net/crypt Jeff Jim Hendricks wrote: >>This random alphanumeric string is know as the SALT, correct? > > > Honestly, you got me there, I'm not sure what SALT is unless your > talking the condiment. My random alphanumeric string is to be used > as a key for encryption of other data in the system. If your only need > is to encrypt the user passwords, then this random alphanumeric > string is of no benefit to you. > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From shiflett at php.net Tue Mar 16 12:18:25 2004 From: shiflett at php.net (Chris Shiflett) Date: Tue, 16 Mar 2004 09:18:25 -0800 (PST) Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> Message-ID: <20040316171825.91240.qmail@web14308.mail.yahoo.com> --- Jim Hendricks wrote: > > This random alphanumeric string is know as the SALT, correct? > > Honestly, you got me there, I'm not sure what SALT is unless your > talking the condiment. My random alphanumeric string is to be used > as a key for encryption of other data in the system. A salt can alter an algorithm, such as DES, to make it a bit less predictable. In fact, using a salt allows for 4096 variations of the DES algorithm. What you're describing sounds like a symmetric key. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From jim at bizcomputinginc.com Tue Mar 16 12:31:53 2004 From: jim at bizcomputinginc.com (Jim Hendricks) Date: Tue, 16 Mar 2004 12:31:53 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing><051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu><00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing><99999DD2-7767-11D8-A6E7-0003930D07F2@email.smith.edu><00fa01c40b75$6b64bde0$6801a8c0@BizComputing> Message-ID: <011101c40b7c$9285d0b0$6801a8c0@BizComputing> > Hehe, tho' it is getting to be time for lunch I'm not referring to the > condiment. > > From php.net, in reference to crypt: > string crypt ( string str [, string salt]) > http://us3.php.net/manual/en/function.crypt.php > > My impression is that the salt is the string that you can provide to > enable the encryption. In the case of crypt, if you don't provide one, > one will be provided for you. Ah, so that is SALT. I don't use DES nor crypt since I use my own implementation of RC4. > Perhaps this isn't analogous to your RC4 method, as you are prepending > the random string to the end of the the password and then encrypting... RC4 is a simple stream permutation/substitution cipher. There are only 2 things you need for encryption, the plaintext/data to encrypt and a key. In my case, the plaintext is a few random characters + the password + a random generated string to use as a key for encrypting other data. If I don't need the personal encryption then my plaintext is a few random characters + the password. The key I use for encryption is the users password. Validation is simply decrypting the stored ciphertext using the users plaintext password. If I know I used 3 random characters then I start reading the decrypted data starting at position 3 and compare to the plaintext password, if it matches character for character, I know the password is valid. If the personal encryption is used, then anything after the password in the decrypted data is the key for personal encryption, this is stored as a session variable so any pages which need to use personal encryption has access to this additional key. With all that said, and my initial impression of SALT in DES, then no, SALT does not provide the same functionality as my random prepended data. At least not in the same way. SALT looks more like Key data since crypt is using DES for HASH generation & DES is not that I am aware of a HASH algo, but an encryption algo. The difference in an encrypt and a HASH is in the results. Encryption is a two way process where the ciphertext can be turned back into the plaintext with the proper inputs. In the case of RC4, you encrypt with plaintext and a key, you decrypt with ciphertext and the same key you encrypted with. A HASH function on the other hand generates a mathematical identifier which cannot be turned back into the original plaintext and is therefore oneway. I personally like to view a hash as similar to a checksum. The resulting HASH can be the same as the resulting HASH for other data, so the HASH is not unique to the HASH'ed data. Depending on the HASH algo determines how likely it is for another dataset to result in the same HASH. It is because of this potential for another set of data to generate the same HASH I personally don't like to use HASH's for security. I'm sure it's an irational fear on my part, but since RC4 is so easy to implement, I stick with that. From sunny-ml at opencurve.org Tue Mar 16 13:26:21 2004 From: sunny-ml at opencurve.org (Sunny Dubey) Date: Tue, 16 Mar 2004 13:26:21 -0500 Subject: [nycphp-talk] looking for some software ... Message-ID: <200403161326.21074.sunny-ml@opencurve.org> Hi guys (this was also posted to nylug-talk, sorry for those on both lists!) I need some web-software that does the following things: - Allows users to upload files - Allows those users to have the software email other people with links pointing to the uploaded files: The following is an example email the software would generate and send to someone: ---------------------------------------------------------------------- To: someone at somewhere.com From; file-share at company.com Subject: Employee has sent you a file!! Message Body: Here are the documents https://company.com/getfile.php?=9w8c94ur8ujklo3iqrj4jlq3nrtf6w (link is only valid for 3 days) EOF ---------------------------------------------------------------------- I've been using bytehoard, but it has some pretty strange bugs, and doesn't work with postfix2.x too well. So I'm looking for something new. I don't have an issue paying a resonable price. Though I'm not going deny I'd like to purchase a pre-existing solution (it would be cheaper). Sunny Dubey From bill at ilovett.com Tue Mar 16 13:33:37 2004 From: bill at ilovett.com (Bill Lovett) Date: Tue, 16 Mar 2004 13:33:37 -0500 Subject: [nycphp-talk] SSL certificate providers In-Reply-To: <40571D17.5010501@sklar.com> References: <40570F0E.9080802@optonline.net> <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> <40571D17.5010501@sklar.com> Message-ID: <20040316183337.GA21782@ilovett.com> On Tue, Mar 16, 2004 at 10:28:23AM -0500, David Sklar wrote: > If you (or your ISP) can flip a switch and enable SSL on your server, > it's simpler (no changes required in your pages) and more standard. If > for some reason you can't use SSL, all this Javascript whatnot can be > helpful. On the subject of SSL, has anyone ever dealt with freecert.org, or similarly alternative certificate authorities? I'm trying to find out if there's any middle ground between a full cost certificate from Thawte or Verisign and a self-signed certificate that no one else but me will trust. -bill From jlacey at att.net Tue Mar 16 13:37:59 2004 From: jlacey at att.net (John Lacey) Date: Tue, 16 Mar 2004 11:37:59 -0700 Subject: [nycphp-talk] SSL certificate providers In-Reply-To: <20040316183337.GA21782@ilovett.com> References: <40570F0E.9080802@optonline.net> <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> <40571D17.5010501@sklar.com> <20040316183337.GA21782@ilovett.com> Message-ID: <40574987.2020003@att.net> check out instantssl.com Bill Lovett wrote: > On Tue, Mar 16, 2004 at 10:28:23AM -0500, David Sklar wrote: > >>If you (or your ISP) can flip a switch and enable SSL on your server, >>it's simpler (no changes required in your pages) and more standard. If >>for some reason you can't use SSL, all this Javascript whatnot can be >>helpful. > > > > On the subject of SSL, has anyone ever dealt with freecert.org, or > similarly alternative certificate authorities? I'm trying to find out if > there's any middle ground between a full cost certificate from Thawte or > Verisign and a self-signed certificate that no one else but me will > trust. > > -bill > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Tue Mar 16 13:40:58 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 13:40:58 -0500 Subject: [nycphp-talk] SSL certificate providers In-Reply-To: <20040316183337.GA21782@ilovett.com> References: <40570F0E.9080802@optonline.net> <0AEE1680-7759-11D8-A6E7-0003930D07F2@email.smith.edu> <40571D17.5010501@sklar.com> <20040316183337.GA21782@ilovett.com> Message-ID: <40574A3A.5050205@optonline.net> I have some clients who have used geotrust. Jeff Bill Lovett wrote: > On Tue, Mar 16, 2004 at 10:28:23AM -0500, David Sklar wrote: > >>If you (or your ISP) can flip a switch and enable SSL on your server, >>it's simpler (no changes required in your pages) and more standard. If >>for some reason you can't use SSL, all this Javascript whatnot can be >>helpful. > > > > On the subject of SSL, has anyone ever dealt with freecert.org, or > similarly alternative certificate authorities? I'm trying to find out if > there's any middle ground between a full cost certificate from Thawte or > Verisign and a self-signed certificate that no one else but me will > trust. > > -bill > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From agfische at email.smith.edu Tue Mar 16 13:57:36 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Tue, 16 Mar 2004 13:57:36 -0500 Subject: [nycphp-talk] security, sessions, and encryption In-Reply-To: <20040316161908.93114.qmail@web14303.mail.yahoo.com> References: <20040316161908.93114.qmail@web14303.mail.yahoo.com> Message-ID: On Mar 16, 2004, at 11:19 AM, Chris Shiflett wrote: > --- Aaron Fischer wrote: >> My main questions revolves around encryption. The sources that I >> have been referencing advocate for encrypting the password during >> the authentication process. > > This is probably because they recommend storing the digest of the > password > in the database, so that you must compare the digest of what the user > enters to authenticate him/her. > > For example: > > 1. User registers for an account: > username: myuser > password: mypass > 2. You perform md5($password) to get a029d0df84eb5549c641e04a9ef389e5. From the brief reading I have done so far on crypt() and md5() I'm not clear about the distinctions between the two. Looks like I need to read some more, but would appreciate any pointers on that topic. > 3. You store the account in the database: > username: myuser > password: a029d0df84eb5549c641e04a9ef389e5 > > So, when you authenticate: > > 4. A user wants to login as myuser and provides mypass as the password. > 5. You compare a029d0df84eb5549c641e04a9ef389e5 (what's in the > database) > with the md5 of what the user entered to validate the credentials. > >> The little application that I am working on now only has fairly low >> level security needs and encryption may be overkill > > Encryption is a helpful thing when it comes to security, but only if > you > understand how it's helping. Just randomly throwing encryption into the > mix rarely does you any good. > > An example (I think David mentioned this) is a replay attack, and I can > give a hypothetical (but quite common) example. > > Some people have this strange idea that they should reauthenticate the > user every visit instead of using sessions to track the user's state. > So, > to be safe, they store the user's username and password in a cookie > (or a > couple of cookies), and they encrypt the username, password, both, or > some > cool string they think of that also contains secret words. They may > end up > with one crazy looking cookie: > > mycookie=q234c5?R~@r451xc3C%!R3ctr512%T%C > > "That's GOTTA be secure," they think to themselves. Keep in mind that > they > are authenticating on every visit, so this cookie doesn't require an > active session or anything. Now, imagine that a poor user uses IE > (users > don't know any better), and their cookie gets exposed to whomever wants > it. Now, a bad guy visits the site with: > > mycookie=q234c5?R~@r451xc3C%!R3ctr512%T%C > > Oops, not only did the bad guy just impersonate the poor IE user, the > bad > guy can do this anytime he/she wants. There's no need to even bother > capturing this cookie ever again. Good thing it's encrypted, huh? :-) > >> Like, one question I have is, why encrypt? What am I preventing from >> happening? > > Exposure. People often use sniffing as an example of what bad things > can > happen from exposure, but it's really just one example (and there's no > need to brainstorm examples, since they're irrelevant in terms of > determining whether exposure is bad). For any bit of data within your > application, you want to keep up with: > > 1. Where the data is kept, where it travels, etc. Know your data. > 2. Whether it *really* matters if the data is captured by a bad guy. > > For example, if your session mechanism is session_start() and nothing > else, it does matter if the session identifier is captured. For a lot > of > data, it probably doesn't really matter, so exposure isn't a big deal. > The > worst that can happen from exposure is that the data is captured by a > bad > guy, so don't bother worrying about how the bad guy does it (unless > you're > just curious). > >> I'd also be interested in hearing references for good books that >> deal with security (shameless plugs are welcome). > > I hope to have a shameless plug later this year. :-) > I'll be looking forward to that! =) > I do have a monthly column in php|architect called Security Corner, and > you can find a few articles on my Web site: > > http://shiflett.org/articles > >> 1. MySQL encryption via "password" function: > > MySQL's password function is version-specific, so this can be a > problem. I > think it's 4.1 where it changes, but maybe it's 5.0. > >> 2. Encrypt using php, which can use the available encryption methods >> which are available on the server operating system. In the book that >> recommends using crypt() > > crypt() is DES, and you might be interested in this book: > > http://www.amazon.com/exec/obidos/tg/detail/-/B00005R08F/qid=1079453570 > > Hope that helps. > > Chris That definitely helps clarify some things in my head, thanks! -Aaron >From hans not junk at nyphp.com Tue Mar 16 16:24:40 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id 57915A862D for ; Tue, 16 Mar 2004 16:24:40 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] looking for some software ... Date: Tue, 16 Mar 2004 13:26:20 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87EB42E7 at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] looking for some software ... Thread-Index: AcQLhDn3cgDGM57BS0SfxCdAyq8I7AAGN6KA From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Mar 2004 21:24:40 -0000 Hey Sunny, > I need some web-software that does the following things: >=20 > - Allows users to upload files > - Allows those users to have the software email other people=20 > with links pointing to the uploaded files: I googled for: php file downloading commercial and came up with a couple of things. I don't really know anything off hand, but it'd be fairly easy to write. Also there's a good chance that http://phpclasses.org can something already written - possibly even PEAR? H From jonbaer at jonbaer.net Tue Mar 16 15:07:08 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 15:07:08 -0500 Subject: [nycphp-talk] security, sessions, and encryption References: <00a901c40b62$300f0dd0$6801a8c0@BizComputing><051F1B3F-775B-11D8-A6E7-0003930D07F2@email.smith.edu><00cf01c40b6c$56c8cbf0$6801a8c0@BizComputing><99999DD2-7767-11D8-A6E7-0003930D07F2@email.smith.edu> <00fa01c40b75$6b64bde0$6801a8c0@BizComputing> Message-ID: <00cf01c40ba9$97043370$6400a8c0@thinkpad> Take a perfect potato ... (your string), mash it up (encrypted), now sprinkle some salt (the salt) ... if you take out the salt it might taste and look like other mashed potatoes ... All this encryption talk is making me hungry ... ----- Original Message ----- From: "Jim Hendricks" To: "NYPHP Talk" Sent: Tuesday, March 16, 2004 11:40 AM Subject: Re: [nycphp-talk] security, sessions, and encryption > > This random alphanumeric string is know as the SALT, correct? > > Honestly, you got me there, I'm not sure what SALT is unless your > talking the condiment. My random alphanumeric string is to be used > as a key for encryption of other data in the system. If your only need > is to encrypt the user passwords, then this random alphanumeric > string is of no benefit to you. > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Tue Mar 16 17:54:00 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 17:54:00 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #240 php stuff References: <20040316052823.GA6506@panix.com><007a01c40b5e$af34c900$6400a8c0@thinkpad> <20040316155751.GA11246@panix.com> Message-ID: <00d201c40ba9$97678920$6400a8c0@thinkpad> After I wrote my email, I just realized they released it in XML which is great: http://www.securityfocus.com/rss/vulnerabilities.xml I setup a cached grep for all the packages (mysql,php,apache,phpbb,etc) ... Anyone know if there are other feeds? - Jon From sunny-ml at opencurve.org Tue Mar 16 19:03:23 2004 From: sunny-ml at opencurve.org (Sunny Dubey) Date: Tue, 16 Mar 2004 19:03:23 -0500 Subject: [nycphp-talk] looking for some software ... Message-ID: <200403161903.23521.sunny-ml@opencurve.org> On Tue Mar 16 13:26:20 EST 2004 Hans Zaunere wrote: > I googled for: php file downloading commercial > > and came up with a couple of things. I don't really know anything off > hand, but it'd be fairly easy to write. Also there's a good chance that > http://phpclasses.org can something already written - possibly even > PEAR? > > H I've looked around too, but everything is either a) a simple file manager or b) has one too many features. I'm somewhat surprised that the software I spoke about isn't made by billions of people. I say this because the clothing industry lives on such software. WIth the clothing industry, you have to deal with people in different countries pretty much all the time. So shipping samples back and forth is really really slow. So these guys scan *clothing* at real size with a billion dots per square inch. Additionally since none of them know much about photoshop, they all end up with huge 20-30 meg JPEG files. These files need to be traded back an forth on a regular basis, hence the need for such software. (Emailing realy huge files back and forth isn't too possible for most.) I'd like to have something asap. So for the time being I'll hash out something simple with either bashlib or c++ (you can stop laughing now!). My html/xml/css/php/mysql/etc/etc/etc is pretty dismal, heh. Thanks for the help though! Sunny Dubey PS: sorry if this post screws up the threading, my email client had some funky issues. From henry at beewh.com Tue Mar 16 19:04:32 2004 From: henry at beewh.com (Henry Ponce) Date: Wed, 17 Mar 2004 00:04:32 +0000 Subject: [nycphp-talk] chat (opinions needed) Message-ID: <200403170004.32162.henry@beewh.com> Hello all: I have to add a chat area in my site. I've been reading info on this and I see that there's different approaches. The two approaches to get this done that most interest me are: php and an ircd on my server php/msyql (similar to phplive!) Can you give me your opinion on which is best, based on your past experience, other's past experience, etc.?? Thank you. Henry From mitchy at spacemonkeylabs.com Tue Mar 16 22:15:30 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Tue, 16 Mar 2004 22:15:30 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: <200403170004.32162.henry@beewh.com> References: <200403170004.32162.henry@beewh.com> Message-ID: <4057C2D2.8000204@spacemonkeylabs.com> Henry Ponce wrote: > Hello all: > > I have to add a chat area in my site. I've been reading info on this and I see > that there's different approaches. > > The two approaches to get this done that most interest me are: > php and an ircd on my server > php/msyql (similar to phplive!) Don't forget option #3, remote flash with textfiles on the server. If you are interested I will hunt down that link, I was meaning to build something with it for another site as a proof of concept... Actually quite brilliant, as the flash 'animation' basically polls the textfile for changes every xxx seconds, and all 'posts' get appended to the textfile. No database overhead, and very small footprint on the client. -- Mitch From jsiegel1 at optonline.net Tue Mar 16 22:18:38 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 22:18:38 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner Message-ID: <4057C38E.3010700@optonline.net> What's the best way to track clicks coming to my client's site from banner ads placed elsewhere? Jeff Siegel From nyphp at enobrev.com Tue Mar 16 22:36:14 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Tue, 16 Mar 2004 22:36:14 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: <4057C2D2.8000204@spacemonkeylabs.com> Message-ID: Option 4 is much more like an actual chat client. Php sockets with xml_sockets in flash. Wrote one a little over ayear ago, which doesn't seem to work anymore due ot lack of maintainence. I've wanted to get it back up and running, just no time. I know there's someone else on this board who's working on one. I wrote him a full step by step breakdown of how I implemented it if you're interested. Good luck. MArk > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Mitch Pirtle > Sent: Tuesday, March 16, 2004 10:15 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] chat (opinions needed) > > Henry Ponce wrote: > > > Hello all: > > > > I have to add a chat area in my site. I've been reading > info on this > > and I see that there's different approaches. > > > > The two approaches to get this done that most interest me are: > > php and an ircd on my server > > php/msyql (similar to phplive!) > > Don't forget option #3, remote flash with textfiles on the > server. If you are interested I will hunt down that link, I > was meaning to build something with it for another site as a > proof of concept... > > Actually quite brilliant, as the flash 'animation' basically > polls the textfile for changes every xxx seconds, and all > 'posts' get appended to the textfile. No database overhead, > and very small footprint on the client. > > -- Mitch > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > > From jonbaer at jonbaer.net Tue Mar 16 22:58:33 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 22:58:33 -0500 Subject: [nycphp-talk] chat (opinions needed) References: <200403170004.32162.henry@beewh.com> Message-ID: <003f01c40bd4$1e520300$6400a8c0@thinkpad> I actually coughed up a few bucks for this one (feels good to pay for PHP now and then :-): http://www.tufat.com/script.php?id_num=2 FlashChat ... - jon ----- Original Message ----- From: "Henry Ponce" To: Sent: Tuesday, March 16, 2004 7:04 PM Subject: [nycphp-talk] chat (opinions needed) > Hello all: > > I have to add a chat area in my site. I've been reading info on this and I see > that there's different approaches. From jonbaer at jonbaer.net Tue Mar 16 23:00:25 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 23:00:25 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner References: <4057C38E.3010700@optonline.net> Message-ID: <004701c40bd4$611eb070$6400a8c0@thinkpad> ive been looking @ this as well (like with the affiliates do - CJ, Befree, Linkshare, Performics, etc) ... i think the direct POST -> SESSION/COOKIE is probably the only way ... - jon ----- Original Message ----- From: "Jeff Siegel" To: "NYPHP Talk" Sent: Tuesday, March 16, 2004 10:18 PM Subject: [nycphp-talk] Tracking clicks to client site from a banner > What's the best way to track clicks coming to my client's site from > banner ads placed elsewhere? From jsiegel1 at optonline.net Tue Mar 16 23:07:37 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 23:07:37 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner In-Reply-To: <004701c40bd4$611eb070$6400a8c0@thinkpad> References: <4057C38E.3010700@optonline.net> <004701c40bd4$611eb070$6400a8c0@thinkpad> Message-ID: <4057CF09.4080006@optonline.net> Not sure if I follow you...can you elaborate? Jeff jon baer wrote: > ive been looking @ this as well (like with the affiliates do - CJ, Befree, > Linkshare, Performics, etc) ... i think the direct POST -> SESSION/COOKIE is > probably the only way ... > > - jon > > ----- Original Message ----- > From: "Jeff Siegel" > To: "NYPHP Talk" > Sent: Tuesday, March 16, 2004 10:18 PM > Subject: [nycphp-talk] Tracking clicks to client site from a banner > > > >>What's the best way to track clicks coming to my client's site from >>banner ads placed elsewhere? > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Tue Mar 16 23:18:27 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 23:18:27 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner References: <4057C38E.3010700@optonline.net><004701c40bd4$611eb070$6400a8c0@thinkpad> <4057CF09.4080006@optonline.net> Message-ID: <006401c40bd6$e5bf4180$6400a8c0@thinkpad> The affiliate programs use a technique that allow a merchant to create a banner link say: Then use the tracking affiliate id for both the session and store it for later on to apply a % of the sales to the referrer ... - Jon ----- Original Message ----- From: "Jeff Siegel" To: "NYPHP Talk" Sent: Tuesday, March 16, 2004 11:07 PM Subject: Re: [nycphp-talk] Tracking clicks to client site from a banner > Not sure if I follow you...can you elaborate? > > Jeff From jsiegel1 at optonline.net Tue Mar 16 23:23:59 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 23:23:59 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner In-Reply-To: <006401c40bd6$e5bf4180$6400a8c0@thinkpad> References: <4057C38E.3010700@optonline.net> <004701c40bd4$611eb070$6400a8c0@thinkpad> <4057CF09.4080006@optonline.net> <006401c40bd6$e5bf4180$6400a8c0@thinkpad> Message-ID: <4057D2DF.3050504@optonline.net> I was thinking along similar lines. I just need to track click throughs. Jeff jon baer wrote: > The affiliate programs use a technique that allow a merchant to create a > banner link say: > > > > > > Then use the tracking affiliate id for both the session and store it for > later on to apply a % of the sales to the referrer ... > > - Jon > > ----- Original Message ----- > From: "Jeff Siegel" > To: "NYPHP Talk" > Sent: Tuesday, March 16, 2004 11:07 PM > Subject: Re: [nycphp-talk] Tracking clicks to client site from a banner > > > >>Not sure if I follow you...can you elaborate? >> >>Jeff > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Tue Mar 16 23:35:35 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 23:35:35 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner References: <4057C38E.3010700@optonline.net><004701c40bd4$611eb070$6400a8c0@thinkpad><4057CF09.4080006@optonline.net><006401c40bd6$e5bf4180$6400a8c0@thinkpad> <4057D2DF.3050504@optonline.net> Message-ID: <007401c40bd9$4b3eeb80$6400a8c0@thinkpad> You could really do the same thing ... log it to MySQL and redirect the user: link $link_id = $_POST['id']; $referral_id = $_POST['ref']; // log, increment counter, grab link, etc. header("Location: [what 123 points to]"); exit; El-cheapo affiliate program :-) ----- Original Message ----- From: "Jeff Siegel" To: "NYPHP Talk" Sent: Tuesday, March 16, 2004 11:23 PM Subject: Re: [nycphp-talk] Tracking clicks to client site from a banner > I was thinking along similar lines. I just need to track click throughs. > > Jeff From jonbaer at jonbaer.net Tue Mar 16 23:41:45 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 16 Mar 2004 23:41:45 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? Message-ID: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> i stopped by b&n today and saw a whole isle almost dedicated to fedora ... i have redhat 9 running + updated is there any need to upgrade to fedora? kde updated? i know that rh stopped supporting stuff ... http://fedora.redhat.com doesnt really tell much in detail ... - jon pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 From jsiegel1 at optonline.net Tue Mar 16 23:47:21 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Tue, 16 Mar 2004 23:47:21 -0500 Subject: [nycphp-talk] Tracking clicks to client site from a banner In-Reply-To: <007401c40bd9$4b3eeb80$6400a8c0@thinkpad> References: <4057C38E.3010700@optonline.net> <004701c40bd4$611eb070$6400a8c0@thinkpad> <4057CF09.4080006@optonline.net> <006401c40bd6$e5bf4180$6400a8c0@thinkpad> <4057D2DF.3050504@optonline.net> <007401c40bd9$4b3eeb80$6400a8c0@thinkpad> Message-ID: <4057D859.70502@optonline.net> That's probably all I'd need to do. Thanks! Jeff -------- jon baer wrote: > You could really do the same thing ... log it to MySQL and redirect the > user: > > link > > $link_id = $_POST['id']; $referral_id = $_POST['ref']; > // log, increment counter, grab link, etc. > header("Location: [what 123 points to]"); > exit; > > El-cheapo affiliate program :-) > > ----- Original Message ----- > From: "Jeff Siegel" > To: "NYPHP Talk" > Sent: Tuesday, March 16, 2004 11:23 PM > Subject: Re: [nycphp-talk] Tracking clicks to client site from a banner > > > >>I was thinking along similar lines. I just need to track click throughs. >> >>Jeff > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From cmerlo at ncc.edu Wed Mar 17 00:23:19 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Wed, 17 Mar 2004 00:23:19 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> Message-ID: <20040317052319.GC31024@ncc.edu> On 2004-03-16 23:41 -0500, jon baer wrote: > i have redhat 9 running + updated is there any need to upgrade to fedora? > kde updated? i know that rh stopped supporting stuff ... > http://fedora.redhat.com doesnt really tell much in detail ... Jon: When trying to decide this for myself, I read a few really really negative reviews, which all basically said that core 1 wasn't ready for primetime. I forget now where I saw them; maybe distrowatch, maybe linuxnews. I have yet to find a positive review. -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo There is no spoon. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From leam at reuel.net Wed Mar 17 05:39:53 2004 From: leam at reuel.net (leam) Date: Wed, 17 Mar 2004 05:39:53 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <20040317052319.GC31024@ncc.edu> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> <20040317052319.GC31024@ncc.edu> Message-ID: <40582AF9.9010605@reuel.net> Christopher R. Merlo wrote: > On 2004-03-16 23:41 -0500, jon baer wrote: > > >>i have redhat 9 running + updated is there any need to upgrade to fedora? >>kde updated? i know that rh stopped supporting stuff ... >>http://fedora.redhat.com doesnt really tell much in detail ... > > > Jon: > When trying to decide this for myself, I read a few really really > negative reviews, which all basically said that core 1 wasn't ready > for primetime. I forget now where I saw them; maybe distrowatch, > maybe linuxnews. I have yet to find a positive review. I'm highly biasd in favor of Red Hat, so take this with a grain of salt. Maybe a couple deer licks worth... Fedora is RH9 with more stuff, and it is the current development area of Red Hat and their influence on the Linux community. RH9 will no longer be supported after April. If your machine runs well and you don't need the most current stuff then you can safely stay with 9 as long as your box isn't exposed to the world. I do my development on a Fedora box, but I also have a RHEL WS desktop. Since I'm primarily a sysadmin any problems with the OS are my stock in trade. If you're more a developer and don't want to spend your time on the OS, just stay where you are. There's not a lot of binary incompatibility from RH9 -> FC1/2, as far as I understand it for PHP/MySQL. I've not hit any showstoppers with it except the Nvidia video card, the MySQL license issue which kept the distributed version on 3.23, and bandwidth issues if you're trying to upgrade when everyone else is. FC2 is due out soon and will use the 2.6 kernel. May also have a more current MySQL too. Hope that helps. ciao! leam From henry at beewh.com Wed Mar 17 04:47:36 2004 From: henry at beewh.com (Henry Ponce) Date: Wed, 17 Mar 2004 09:47:36 +0000 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: References: Message-ID: <200403170947.36311.henry@beewh.com> yeah im interested. It would be great if you can send me the step by step breakdown. thank you, Henry On Wednesday 17 March 2004 03:36, Mark Armendariz wrote: > Option 4 is much more like an actual chat client. > > Php sockets with xml_sockets in flash. > > Wrote one a little over ayear ago, which doesn't seem to work anymore due > ot lack of maintainence. I've wanted to get it back up and running, just > no time. I know there's someone else on this board who's working on one. > I wrote him a full step by step breakdown of how I implemented it if you're > interested. > > Good luck. > > MArk > > > -----Original Message----- > > From: talk-bounces at lists.nyphp.org > > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Mitch Pirtle > > Sent: Tuesday, March 16, 2004 10:15 PM > > To: NYPHP Talk > > Subject: Re: [nycphp-talk] chat (opinions needed) > > > > Henry Ponce wrote: > > > Hello all: > > > > > > I have to add a chat area in my site. I've been reading > > > > info on this > > > > > and I see that there's different approaches. > > > > > > The two approaches to get this done that most interest me are: > > > php and an ircd on my server > > > php/msyql (similar to phplive!) > > > > Don't forget option #3, remote flash with textfiles on the > > server. If you are interested I will hunt down that link, I > > was meaning to build something with it for another site as a > > proof of concept... > > > > Actually quite brilliant, as the flash 'animation' basically > > polls the textfile for changes every xxx seconds, and all > > 'posts' get appended to the textfile. No database overhead, > > and very small footprint on the client. > > > > -- Mitch > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From mitchy at spacemonkeylabs.com Wed Mar 17 08:51:26 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 17 Mar 2004 08:51:26 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: <200403170947.36311.henry@beewh.com> References: <200403170947.36311.henry@beewh.com> Message-ID: <405857DE.70404@spacemonkeylabs.com> Henry Ponce wrote: > yeah im interested. It would be great if you can send me the step by step > breakdown. (looks for AOL CD) Me too :) Seriously, I'd love to document something like this, as it is becoming increasingly more brought up. Can I get your recipe? -- Mitch From mitchy at spacemonkeylabs.com Wed Mar 17 08:57:14 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 17 Mar 2004 08:57:14 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <20040317052319.GC31024@ncc.edu> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> <20040317052319.GC31024@ncc.edu> Message-ID: <4058593A.7020205@spacemonkeylabs.com> Christopher R. Merlo wrote: > When trying to decide this for myself, I read a few really really > negative reviews, which all basically said that core 1 wasn't ready > for primetime. I forget now where I saw them; maybe distrowatch, > maybe linuxnews. I have yet to find a positive review. Here it is ;) I had RH9 running on my workstation at home, and have to admin a mix of 7.X/8.X/FC1 servers all over the world. Out of sheer curiosity I did a fresh install of FC1 on my workstation, and have been happy ever since. Getting new versions of package-xyz was never easier (or available), and I have not experienced any stability issues - in fact am much happier with FC1. FC2 is around the corner, and I contemplated installing a test release, but chickened out - I'll wait a little longer for the new kernel stuff to get ironed out. I consider linux distros just like cell phones, right when you make up your mind on what you want, another one is announced, prolonging your purchasing paralysis :) From nyphp at enobrev.com Wed Mar 17 09:20:02 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Wed, 17 Mar 2004 09:20:02 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: <405857DE.70404@spacemonkeylabs.com> Message-ID: Damn.. I seem to have lost the actual doc I wrote a while back. I've been planning a tutorial on this for a while now, but that would require finishing the app. I'll get to writing now.. Hopefully I'll have something for ya by this afternoon Mark > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Mitch Pirtle > Sent: Wednesday, March 17, 2004 8:51 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] chat (opinions needed) > > Henry Ponce wrote: > > > yeah im interested. It would be great if you can send me > the step by > > step breakdown. > > (looks for AOL CD) > > Me too :) > > Seriously, I'd love to document something like this, as it is > becoming increasingly more brought up. Can I get your recipe? > > -- Mitch > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > > From faber at linuxnj.com Wed Mar 17 09:29:17 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 17 Mar 2004 09:29:17 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad> Message-ID: <20040317142917.GA2779@uranus.faber.nom> On Tue, Mar 16, 2004 at 11:41:45PM -0500, jon baer wrote: > i stopped by b&n today and saw a whole isle almost dedicated to fedora ... > > i have redhat 9 running + updated is there any need to upgrade to fedora? > kde updated? i know that rh stopped supporting stuff ... > http://fedora.redhat.com doesnt really tell much in detail ... I and several freinds have upgraded to FC1 and we have no complaints. On my Dell 5000e laptop, everything got configured properly and I upgraded to the latest releases easily with YUM. I can't find anything wrong with it. When I get some time, I'll probably upgrade all of my home machnes to FC1. I'll probably buy RH Enterprise WS and/or Server just to see what they're about. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From mjdewitt at alexcommgrp.com Wed Mar 17 09:43:00 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Wed, 17 Mar 2004 09:43:00 -0500 Subject: [nycphp-talk] HTML entities in posted variables problem Message-ID: Does anyone have a good idea of the best way to handle HTML entities in post variables? It seems that the entity will be converted to a rendered character when the page returns making checks of the string used to set the value against the returned (posted) value will fail. For example // ’ is the close quote $a='Yes, It’s true'; echo ''.$a; . . . if ($a==$_post['q1']) { echo 'A miracle happened'; } Checking $_post['q1'], I find it is equal to "Yes it's true" I have played around with other entities and it doesn't seem to be an issue with just quotes. Does anyone have an idea of why this is happening and, perhaps, the best way to handle this? I believe a similar question was posted back on the 2nd by Rahmin, but I couldn't find any responses. Mike From Cbielanski at inta.org Wed Mar 17 09:57:56 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 17 Mar 2004 09:57:56 -0500 Subject: [nycphp-talk] HTML entities in posted variables problem Message-ID: Check the manual for the htmlspecialchars(), urlencode() and urldecode() functions. Unless I'm missing the point, these functions should make it fairly simple for you to convert the entities or encoding in the request vars back into plaintext. If that's not helpful, Read The Fine Manual about string data, and the differences in single- and double-quoted string contructs, particularly where it concerns using the backslash character to escape other characters within a string. HTH ~Chris > -----Original Message----- > From: DeWitt, Michael [mailto:mjdewitt at alexcommgrp.com] > Sent: Wednesday, March 17, 2004 9:43 AM > To: 'NYPHP Talk' > Subject: [nycphp-talk] HTML entities in posted variables problem > > > Does anyone have a good idea of the best way to handle HTML > entities in post > variables? It seems that the entity will be converted to a rendered > character when the page returns making checks of the string > used to set the > value against the returned (posted) value will fail. > > For example > > // ’ is the close quote > > $a='Yes, It’s true'; > > echo ''.$a; > > . > . > . > > if ($a==$_post['q1']) { > echo 'A miracle happened'; > > } > > Checking $_post['q1'], I find it is equal to "Yes it's true" > I have played around with other entities and it doesn't seem > to be an issue > with just quotes. > > Does anyone have an idea of why this is happening and, > perhaps, the best way > to handle this? > > I believe a similar question was posted back on the 2nd by > Rahmin, but I > couldn't find any responses. > > Mike > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From mjdewitt at alexcommgrp.com Wed Mar 17 10:43:36 2004 From: mjdewitt at alexcommgrp.com (DeWitt, Michael) Date: Wed, 17 Mar 2004 10:43:36 -0500 Subject: [nycphp-talk] HTML entities in posted variables problem Message-ID: Chris, Thank you very much. urlencode/urldecode works. It never occured to me to use this technique with the POST method, but it works and solves this issue of getting back exactly what you preset a form variable to be. Interestingly, htmlentities doesn't seem to work for me as htmlentities($a) is not equal to htmlentities($_post['q1']) It seems like it should work (as all characters with entity equivalents should be translated), but it doesn't for me even exploring the various quoting options of this function. My issue is that I have no idea of what people are going to put into the $a string. It may contain entities or not. All I need to know is if I got back the exact same string after posting which is where I ran into this issue. On a side note,It also seems to me that the "text" form elements are going to present special issues like the one mentioned by Rahmin since you are not dealing with preset values. Thanks again for your help. Mike > -----Original Message----- > From: Chris Bielanski [SMTP:Cbielanski at inta.org] > Sent: Wednesday, March 17, 2004 9:58 AM > To: 'NYPHP Talk' > Subject: RE: [nycphp-talk] HTML entities in posted variables problem > > Check the manual for the htmlspecialchars(), urlencode() and urldecode() > functions. Unless I'm missing the point, these functions should make it > fairly simple for you to convert the entities or encoding in the request > vars back into plaintext. If that's not helpful, Read The Fine Manual > about > string data, and the differences in single- and double-quoted string > contructs, particularly where it concerns using the backslash character to > escape other characters within a string. > > HTH > ~Chris > > > -----Original Message----- > > From: DeWitt, Michael [mailto:mjdewitt at alexcommgrp.com] > > Sent: Wednesday, March 17, 2004 9:43 AM > > To: 'NYPHP Talk' > > Subject: [nycphp-talk] HTML entities in posted variables problem > > > > > > Does anyone have a good idea of the best way to handle HTML > > entities in post > > variables? It seems that the entity will be converted to a rendered > > character when the page returns making checks of the string > > used to set the > > value against the returned (posted) value will fail. > > > > For example > > > > // ’ is the close quote > > > > $a='Yes, It’s true'; > > > > echo ''.$a; > > > > . > > . > > . > > > > if ($a==$_post['q1']) { > > echo 'A miracle happened'; > > > > } > > > > Checking $_post['q1'], I find it is equal to "Yes it's true" > > I have played around with other entities and it doesn't seem > > to be an issue > > with just quotes. > > > > Does anyone have an idea of why this is happening and, > > perhaps, the best way > > to handle this? > > > > I believe a similar question was posted back on the 2nd by > > Rahmin, but I > > couldn't find any responses. > > > > Mike > > > > > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From sklar at sklar.com Wed Mar 17 10:50:06 2004 From: sklar at sklar.com (David Sklar) Date: Wed, 17 Mar 2004 10:50:06 -0500 Subject: [nycphp-talk] HTML entities in posted variables problem In-Reply-To: References: Message-ID: <405873AE.6010701@sklar.com> > Interestingly, htmlentities doesn't seem to work for me as > > htmlentities($a) is not equal to htmlentities($_post['q1']) This is probably because htmlentities() turns " into " and not ’ ’ (on my browser at least) displays as a curly apostrophe (single close quote), not as a doublequote. David From Cbielanski at inta.org Wed Mar 17 11:59:41 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 17 Mar 2004 11:59:41 -0500 Subject: [nycphp-talk] HTML entities in posted variables problem Message-ID: Add to that, there's always the chance that you will get UTF-8 when you want ASCII, or vice-versa... Clients are funny things. ~C > -----Original Message----- > From: David Sklar [mailto:sklar at sklar.com] > Sent: Wednesday, March 17, 2004 10:50 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] HTML entities in posted variables problem > > > > Interestingly, htmlentities doesn't seem to work for me as > > > > htmlentities($a) is not equal to htmlentities($_post['q1']) > > This is probably because htmlentities() turns " into " and not > ’ ’ (on my browser at least) displays as a curly > apostrophe > (single close quote), not as a doublequote. > > David > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From nyphp at enobrev.com Wed Mar 17 12:00:41 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Wed, 17 Mar 2004 12:00:41 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: Message-ID: Ok, I kinda threw something together. A forewarning. This is NOT a tutorial. It's mostly a story of the process I went through. I've included a few code excerpts as well. I plan to eventually write out the entire process and offer some code and all that fun stuff, but I don't have any time to get that together now. http://www.enobrev.com/chat_tutorial.php Feel free to contact me off list should you have any questions or corrections. I will NOT give out the code at them moment. Not that I don't want to share, the code is in pieces and is not ready for anything even remotely resembling distribution. Enjoy. Mark From phillip.powell at adnet-sys.com Wed Mar 17 12:00:30 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 12:00:30 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem Message-ID: <4058842E.4010202@adnet-sys.com> The following occurs when we query records on the 'interns' table: Fatal error: Allowed memory size of 8388608 bytes exhausted (tried to allocate 40 bytes) in ../intern.inc on line 1135 We are having a live problem inasmuch as the client is attempting now to search and query records only to have such error messages occur at this point. The table consists of currently approx. 2000 records only, MySQL 3.23.41. Any advice appreciated and quickly! Thanx Phil -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From mitchy at spacemonkeylabs.com Wed Mar 17 12:06:34 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 17 Mar 2004 12:06:34 -0500 Subject: [nycphp-talk] HTML entities in posted variables problem In-Reply-To: References: Message-ID: <4058859A.2020802@spacemonkeylabs.com> Hmm, wonder if urlencode() and urldecode() would do the trick? Chris Bielanski wrote: > Add to that, there's always the chance that you will get UTF-8 when you want > ASCII, or vice-versa... Clients are funny things. > ~C > > >>-----Original Message----- >>From: David Sklar [mailto:sklar at sklar.com] >>Sent: Wednesday, March 17, 2004 10:50 AM >>To: NYPHP Talk >>Subject: Re: [nycphp-talk] HTML entities in posted variables problem >> >> >> >>>Interestingly, htmlentities doesn't seem to work for me as >>> >>>htmlentities($a) is not equal to htmlentities($_post['q1']) >> >>This is probably because htmlentities() turns " into " and not >>’ ’ (on my browser at least) displays as a curly >>apostrophe >>(single close quote), not as a doublequote. From cmerlo at ncc.edu Wed Mar 17 12:07:45 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Wed, 17 Mar 2004 12:07:45 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: References: Message-ID: <20040317170745.GC7485@ncc.edu> On 2004-03-17 12:00 -0500, Mark Armendariz wrote: > http://www.enobrev.com/chat_tutorial.php Wow, Mark, that's cool stuff. I can't wait to find the time to really sink my teeth into it. -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo You are in a maze of twisty little passages, all alike. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From jlacey at att.net Wed Mar 17 12:25:44 2004 From: jlacey at att.net (John Lacey) Date: Wed, 17 Mar 2004 10:25:44 -0700 Subject: [nycphp-talk] need urgent help with MySQL indexing problem In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> Message-ID: <40588A18.5080009@att.net> prolly got a Cartesian product in the query... that'll eat the 8MB Hans Zaunere wrote: >>The following occurs when we query records on the 'interns' table: >> >>Fatal error: Allowed memory size of 8388608 bytes exhausted (tried to >>allocate 40 bytes) in ../intern.inc on line 1135 > > > Show me line 1135 and a couple lines surrounding it - I bet this isn't a > MySQL error. > > See http://us3.php.net/ini_set and search the page for memory_limit - > notice it's 8M by default. Thus, it's probably a PHP error and sloppy > code. > > H > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From weyrick at roadsend.com Wed Mar 17 12:55:41 2004 From: weyrick at roadsend.com (Shannon Weyrick) Date: Wed, 17 Mar 2004 12:55:41 -0500 Subject: [nycphp-talk] [ANNOUNCE] Roadsend Compiler for PHP Public Beta Message-ID: <4058911D.8050505@roadsend.com> Roadsend is pleased to announce the immediate availability of a limited beta test program for the Roadsend Compiler for PHP. The Roadsend Compiler for PHP generates standalone applications, libraries, and web applications from standard PHP source code. The compiler produces native machine code, not PHP byte code, so no interpreter is required. The code generated by the compiler is optimized to improve performance. The Roadsend Compiler for PHP is a *new* implementation of the PHP language and runtime environment compatible with Zend PHP 4.3.4. The Roadsend Compiler for PHP does not share any source code with the open source PHP implementation. We are now accepting applications to participate in the beta test. By taking part in the beta test you can help shape the compiler before its public release by suggesting improvements and reporting bugs. Applicants should have a good working knowledge of PHP, a current base of code they can use for testing, and good bug reporting and communication skills. For more information, or to apply for the program, please visit the Roadsend website at http://www.roadsend.com Thank You, Roadsend Staff From phillip.powell at adnet-sys.com Wed Mar 17 12:58:28 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 12:58:28 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> Message-ID: <405891C4.20402@adnet-sys.com> Actually the client is saying it sometimes happens and sometimes doesn't happen, and when they refresh their screen it clears itself (I assume the memory clears). Here is line 1135: [PHP]$result = mysql_query($this->query, $this->dbcnx) or die(@include("$DOCUMENT_ROOT${devpath}errors/query_error.php"));[/PHP] It is found here in this class method: class mySqlQuery { var $query,$dbcnx; // $dbcnx is a mySqlConnection object function mySqlQuery($query,$dbcnx) { $this->query = $query; $this->dbcnx = $dbcnx; } function runQuery() { global $devpath,$DOCUMENT_ROOT; if (preg_match('/development\//i', $devpath)) { $result = mysql_query($this->query, $this->dbcnx) or die(@include("$DOCUMENT_ROOT${devpath}errors/query_error.php?msg=" . urlencode(mysql_error()))); } else { $result = mysql_query($this->query, $this->dbcnx) or die(@include("$DOCUMENT_ROOT${devpath}errors/query_error.php")); } return $result; } function getResult() { $runquery = $this->runQuery(); $count = 0; while ($row = mysql_fetch_object($runquery)) { $result[$count] = $row; $count++; } return $result; } function getRows($what = 'select') { $runquery = $this->runQuery(); $count = 0; if (strcmp(strtolower($what), 'affected') == 0) { $row = @mysql_affected_rows($this->dbcnx); } else { $row = @mysql_num_rows($this->dbcnx); } if (!$row) { return false; } return $row; } function freeResult() { @mysql_free_result($this->runQuery()); } } Hans Zaunere wrote: >>The following occurs when we query records on the 'interns' table: >> >>Fatal error: Allowed memory size of 8388608 bytes exhausted (tried to >>allocate 40 bytes) in ../intern.inc on line 1135 >> >> > >Show me line 1135 and a couple lines surrounding it - I bet this isn't a >MySQL error. > >See http://us3.php.net/ini_set and search the page for memory_limit - >notice it's 8M by default. Thus, it's probably a PHP error and sloppy >code. > >H > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk > > > -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From phillip.powell at adnet-sys.com Wed Mar 17 13:01:47 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 13:01:47 -0500 Subject: [nycphp-talk] Recommendations for fine-tuning FULLTEXT search indexing MySQL 3.23.41 Message-ID: <4058928B.2040904@adnet-sys.com> Consider the following query: SELECT id, CONCAT(lname,', ',fname,' ',mi) as name,citizen,major,minor,gpa,internship_eo, MATCH (fname,lname,email,enrollment_status,enrollment_type,enrollment_year,major,minor,agencies,internship_eo,internship_sponsors,activities,reasons,resume) AGAINST ('Computer') as score FROM interns WHERE MATCH (fname,lname,email,enrollment_status,enrollment_type,enrollment_year,major,minor,agencies,internship_eo,internship_sponsors,activities,reasons,resume) AGAINST ('Computer') If I run this query I get 0 results back, however, I can easily verify by peeking into the database that at least one of the columns in MATCH() for at least 1 record contains the word 'Computer'. If I use this query instead: SELECT id, CONCAT(lname,', ',fname,' ',mi) as name,citizen,major,minor,gpa,internship_eo, MATCH (fname,lname,email,enrollment_status,enrollment_type,enrollment_year,major,minor,agencies,internship_eo,internship_sponsors,activities,reasons,resume) AGAINST ('Computers') as score FROM interns WHERE MATCH (fname,lname,email,enrollment_status,enrollment_type,enrollment_year,major,minor,agencies,internship_eo,internship_sponsors,activities,reasons,resume) AGAINST ('Computers') I get results coming back, even from those where none of the columns in the MATCH() contain the word 'Computers' (but contain the word 'Computer'). If anyone has ever worked with MySQL 3.23.41 MyISAM tables with FULLTEXT search indexes, please let me know how I can fine-tune this to function properly upon a search word(s). Thanx Phil -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From danielc at analysisandsolutions.com Wed Mar 17 13:14:56 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 17 Mar 2004 13:14:56 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem In-Reply-To: <405891C4.20402@adnet-sys.com> References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <405891C4.20402@adnet-sys.com> Message-ID: <20040317181456.GA24786@panix.com> On Wed, Mar 17, 2004 at 12:58:28PM -0500, Phil Powell wrote: > Here is line 1135: > [PHP]$result = mysql_query($this->query, $this->dbcnx) or > die(@include("$DOCUMENT_ROOT${devpath}errors/query_error.php"));[/PHP] > > It is found here in this class method: What you just posted has nothing to do with the reason you're gobbling up all of the memory. But why am I not surprised. ... I deleted the text from prior posts. You DO know there's a DELETE key on your keyboard, right? Select the old text then hit that key. Good luck! ... --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From phillip.powell at adnet-sys.com Wed Mar 17 13:18:10 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 13:18:10 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <405891C4.20402@adnet-sys.com> <20040317181456.GA24786@panix.com> Message-ID: <40589662.6090205@adnet-sys.com> Daniel Convissor wrote: >On Wed, Mar 17, 2004 at 12:58:28PM -0500, Phil Powell wrote: > > >>Here is line 1135: >>[PHP]$result = mysql_query($this->query, $this->dbcnx) or >>die(@include("$DOCUMENT_ROOT${devpath}errors/query_error.php"));[/PHP] >> >>It is found here in this class method: >> >> > >What you just posted has nothing to do with the reason you're gobbling up >all of the memory. But why am I not surprised. > >... I deleted the text from prior posts. You DO know there's a DELETE key >on your keyboard, right? Select the old text then hit that key. Good >luck! ... > >--Dan > > > I think you honestly enjoy this, Dan. It's your superior-intellect form of lowly entertainment to stomp on me when I am having serious problems with what you know since birth. Can't you, just for once, try to HELP or at least be respectful of those who only know 0.01% of what you know? Phil -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From danielc at analysisandsolutions.com Wed Mar 17 13:24:47 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 17 Mar 2004 13:24:47 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem In-Reply-To: <40589662.6090205@adnet-sys.com> References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <405891C4.20402@adnet-sys.com> <20040317181456.GA24786@panix.com> <40589662.6090205@adnet-sys.com> Message-ID: <20040317182447.GA26273@panix.com> On Wed, Mar 17, 2004 at 01:18:10PM -0500, Phil Powell wrote: ... old stuff snipped. Guess you don't know where the DELETE key is... > It's your superior-intellect form of lowly entertainment to stomp on > me... > Can't you, just for once, try to HELP > or at least be respectful of those who only know 0.01% of what you know? No, that's not it Phil. How CAN we help you if you don't post the information relevant to your problems? And then when we FINALLY figure it out -- after dragging it out of you -- and tell you what to do, you go ahead and ignore what we say? Bye, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From phillip.powell at adnet-sys.com Wed Mar 17 13:29:15 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 13:29:15 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <405891C4.20402@adnet-sys.com> <20040317181456.GA24786@panix.com> <40589662.6090205@adnet-sys.com> <20040317182447.GA26273@panix.com> Message-ID: <405898FB.7080006@adnet-sys.com> Daniel Convissor wrote: >On Wed, Mar 17, 2004 at 01:18:10PM -0500, Phil Powell wrote: > >... old stuff snipped. Guess you don't know where the DELETE key is... > > > >>It's your superior-intellect form of lowly entertainment to stomp on >>me... >>Can't you, just for once, try to HELP >>or at least be respectful of those who only know 0.01% of what you know? >> >> > >No, that's not it Phil. How CAN we help you if you don't post the >information relevant to your problems? And then when we FINALLY figure it >out -- after dragging it out of you -- and tell you what to do, you go >ahead and ignore what we say? > >Bye, > >--Dan > > > Tell you what, Dan. Tell me EXACTLY what I must post for you to know what illustrates the problem. Hans asked for the code that threw the Fatal Error, which is what I did.. and the script that has the line that throws the fatal error. I don't understand what you want, then. Perhaps, again, I don't know how to communicate to NYPHP people, or at least to you. And I do not ignore people's advice, that is a serious overgeneralization. As a matter of fact I am quick to thank others for their help, and many times I solve it beforehand and listen to their advice. But I do not listen to personal attacks and spiteful diatribe only because the client problem is unsolved ultimately by such an exchange (and my level of respect toward the spiter is lowered only because I am concluding they are unwilling to "share the wealth" of personal experience in dealing with a similar area out of whatever personal reasons abound). Phil Phil -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From csnyder at chxo.com Wed Mar 17 13:34:39 2004 From: csnyder at chxo.com (Chris Snyder) Date: Wed, 17 Mar 2004 13:34:39 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: References: Message-ID: <40589A3F.1080501@chxo.com> Mark Armendariz wrote: >Ok, I kinda threw something together. > Excellent page, Mark -- I demonize Flash at every opportunity, but I'm secretly in love with its ability to be a scriptable cross-platform client. From suzerain at suzerain.com Wed Mar 17 14:15:48 2004 From: suzerain at suzerain.com (Marc Antony Vose) Date: Wed, 17 Mar 2004 14:15:48 -0500 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: <200403170004.32162.henry@beewh.com> References: <200403170004.32162.henry@beewh.com> Message-ID: hey there: i am having one of those 'feeling stupid' moments, but i have a search and replace that is for some reason working on my home machine and failing on my remote server. i need to match everything inside a html tag, even if that includes other html tags, and replace it with something else. here's my call: --- $fn_text_to_match = '|([^]+)|'; $art_body_real = preg_replace_callback( $fn_text_to_match,'handleFootnote',$art_body ); the function handleFootnote, does this: $all_footnotes = array(); function handleFootnote( $matches ){ global $fn_ctr, $all_footnotes, $art_id; //echo "we found a match: " . $fn_ctr . " | " . $matches[1] . "
"; $all_footnotes[$fn_ctr] = array( "text" => $matches[1] ); $fn_ctr++; return '' . ($fn_ctr+1) . ''; } --- Basically, what's going on here, is the client has a tool where they can enter text in superscript, then i need to parse that text out and replace it with a number, and extract the text they had as a 'footnote' which is exported to a text file. But the problem with my original match is i need to match the ... can anyone help me with that first line of code there? i am not the most experienced with regular expressions... cheers, -- Marc Antony Vose http://www.suzerain.com/ The thing I love most about deadlines is the wonderful WHOOSHing sound they make as they go past. -- Douglas Adams. From sklar at sklar.com Wed Mar 17 14:23:29 2004 From: sklar at sklar.com (David Sklar) Date: Wed, 17 Mar 2004 14:23:29 -0500 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: References: <200403170004.32162.henry@beewh.com> Message-ID: <4058A5B1.5090506@sklar.com> The regular expression '|([^]+)|' Says "match the literal text '' then one or more characters that aren't <, /, s, u, p, or >, then the literal text ''" You want {(.+?)} which says "match the literal text '' then as few characters as possible, then the literal text '' (I also changed the delimiters to curly braces to avoid confusion with the | regex metacharacter.) This regex still puts the stuff inside the tags in $matches[1]. David Marc Antony Vose wrote: > $fn_text_to_match = '| class="gt_article_footnote">([^]+)|'; > $art_body_real = preg_replace_callback( > $fn_text_to_match,'handleFootnote',$art_body ); > > the function handleFootnote, does this: > > $all_footnotes = array(); > function handleFootnote( $matches ){ > global $fn_ctr, $all_footnotes, $art_id; > > //echo "we found a match: " . $fn_ctr . " | " . $matches[1] . "
"; > $all_footnotes[$fn_ctr] = array( > "text" => $matches[1] > ); > > $fn_ctr++; > > return ' href="javascript:showGTFootnotes(' . "'" . $fn_ctr . "'" . ')">' . > ($fn_ctr+1) . ''; > } > --- > > Basically, what's going on here, is the client has a tool where they can > enter text in superscript, then i need to parse that text out and > replace it with a number, and extract the text they had as a 'footnote' > which is exported to a text file. > > But the problem with my original match is i need to match the class="gt_article_footnote">... > > can anyone help me with that first line of code there? i am not the > most experienced with regular expressions... From phillip.powell at adnet-sys.com Wed Mar 17 14:26:57 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 14:26:57 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <40588A18.5080009@att.net> Message-ID: <4058A681.4060803@adnet-sys.com> John Lacey wrote: > > prolly got a Cartesian product in the query... Actually, some of the queries could be producing Cartesian products, but there are those that simply have this: SELECT id, fname, lname, gpa, major, minor FROM interns ORDER BY lname, date desc For queries such as these (this is one of the queries that has on occasions thrown the Fatal Error upon attempt to use mysql_query() upon this statement (occurs in about 5 different scripts now). Phil > > that'll eat the 8MB > > Hans Zaunere wrote: > >>> The following occurs when we query records on the 'interns' table: >>> >>> Fatal error: Allowed memory size of 8388608 bytes exhausted (tried >>> to allocate 40 bytes) in ../intern.inc on line 1135 >> >> >> >> Show me line 1135 and a couple lines surrounding it - I bet this isn't a >> MySQL error. >> >> See http://us3.php.net/ini_set and search the page for memory_limit - >> notice it's 8M by default. Thus, it's probably a PHP error and sloppy >> code. >> >> H >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From dmintz at davidmintz.org Wed Mar 17 14:32:34 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 17 Mar 2004 14:32:34 -0500 (EST) Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: <4058A5B1.5090506@sklar.com> References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> Message-ID: I'm no guru so maybe I missed something but -- it looks like the regex assumes all the stuff will be on a single line. If you want to allow the possibility that there are newlines between and , add the s modifier. Right? On Wed, 17 Mar 2004, David Sklar wrote: > The regular expression '| class="gt_article_footnote">([^]+)|' > > Says > > "match the literal text '' then one or > more characters that aren't <, /, s, u, p, or >, then the literal text > ''" > > You want > > {(.+?)} > --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From jlacey at att.net Wed Mar 17 14:38:13 2004 From: jlacey at att.net (John Lacey) Date: Wed, 17 Mar 2004 12:38:13 -0700 Subject: [nycphp-talk] need urgent help with MySQL indexing problem In-Reply-To: <4058A681.4060803@adnet-sys.com> References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <40588A18.5080009@att.net> <4058A681.4060803@adnet-sys.com> Message-ID: <4058A925.9070704@att.net> Phil Powell wrote: > John Lacey wrote: > >> >> prolly got a Cartesian product in the query... > > > > Actually, some of the queries could be producing Cartesian products, but > there are those that simply have this: > > SELECT id, fname, lname, gpa, major, minor FROM interns ORDER BY lname, > date desc > > For queries such as these (this is one of the queries that has on > occasions thrown the Fatal Error upon attempt to use mysql_query() upon > this statement (occurs in about 5 different scripts now). > seems the query as indicated above, would not yield a CP, since it's only a single table... I notice you're ordering by some columns that are not in the requested list of fields you want returned... if you can duplicate it, either try eliminating the date and desc in the ORDER BY clause or include them in the SELECTED field list... doing this may lead to some further insights... however, have you thought of the possibility that From sklar at sklar.com Wed Mar 17 14:40:58 2004 From: sklar at sklar.com (David Sklar) Date: Wed, 17 Mar 2004 14:40:58 -0500 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> Message-ID: <4058A9CA.2060607@sklar.com> Yes, you're correct. Good catch! /s (or '}s' in this case) is required to make "." match newlines as well as any other character. David David Mintz wrote: > I'm no guru so maybe I missed something but -- it looks like the regex > assumes all the stuff will be on a single line. If you want to allow the > possibility that there are newlines between and , add the s > modifier. > > Right? > > On Wed, 17 Mar 2004, David Sklar wrote: > > >>The regular expression '|>class="gt_article_footnote">([^]+)|' >> >>Says >> >>"match the literal text '' then one or >>more characters that aren't <, /, s, u, p, or >, then the literal text >>''" >> >>You want >> >>{(.+?)} From nyphp at enobrev.com Wed Mar 17 14:42:14 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Wed, 17 Mar 2004 14:42:14 -0500 Subject: [nycphp-talk] chat (opinions needed) In-Reply-To: <40589A3F.1080501@chxo.com> Message-ID: > Excellent page, Mark -- I demonize Flash at every > opportunity, but I'm secretly in love with its ability to be > a scriptable cross-platform client. Glad it made some semblance of sense to you. I've loved the potential of flash for a long time now, but now... Wow. In the past week with it, my oo 'get it' meter has gone from 'huh?' to 'ahhhh!!'. I'm in love all over again. That's one of the reasons I spit this this thing out.. a motivator to getting back on track... From suzerain at suzerain.com Wed Mar 17 15:01:07 2004 From: suzerain at suzerain.com (Marc Antony Vose) Date: Wed, 17 Mar 2004 15:01:07 -0500 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: <4058A9CA.2060607@sklar.com> References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> Message-ID: hey davids: many thanks. i was trying in my head to create a match for the beginning of the tag, then anything that is not "", and then . many times, like now, i find that my strategy is wrong with pattern matching. cheers, marc >Yes, you're correct. Good catch! /s (or '}s' in this case) is >required to make "." match newlines as well as any other character. > >David > >David Mintz wrote: > >>I'm no guru so maybe I missed something but -- it looks like the regex >>assumes all the stuff will be on a single line. If you want to allow the >>possibility that there are newlines between and , add the s >>modifier. >> >>Right? >> >>On Wed, 17 Mar 2004, David Sklar wrote: >> >>>The regular expression '|>>class="gt_article_footnote">([^]+)|' >>> >>>Says >>> >>>"match the literal text '' then one or >>>more characters that aren't <, /, s, u, p, or >, then the literal text >>>''" >>> >>>You want >>> >>>{(.+?)} > > > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk From sklar at sklar.com Wed Mar 17 15:16:01 2004 From: sklar at sklar.com (David Sklar) Date: Wed, 17 Mar 2004 15:16:01 -0500 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> Message-ID: <4058B201.3010905@sklar.com> > many thanks. i was trying in my head to create a match for the > beginning of the tag, then anything that is not "", and then . > > many times, like now, i find that my strategy is wrong with pattern > matching. Thinking like a regex would is a weird way to think that requires a lot of adjustment from normal human thought. The adjustment, IMHO, is complicated when you want to express a negation in your pattern (like "anything that is not '') because the ways to do that in regex land are tucked into twisty, punctuation-riddled back alleys. "Mastering Regular Expressions" by Jeffrey Friedl (http://regex.info) is the place to start if you want to climb the regex mountain, though. David From jlacey at att.net Wed Mar 17 15:30:01 2004 From: jlacey at att.net (John Lacey) Date: Wed, 17 Mar 2004 13:30:01 -0700 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: <4058B201.3010905@sklar.com> References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> <4058B201.3010905@sklar.com> Message-ID: <4058B549.8000208@att.net> David Sklar wrote: > "Mastering Regular Expressions" by Jeffrey Friedl (http://regex.info) is > the place to start if you want to climb the regex mountain, though. > you might also check out this link: http://www.weitz.de/regex-coach/ From suzerain at suzerain.com Wed Mar 17 15:49:15 2004 From: suzerain at suzerain.com (Marc Antony Vose) Date: Wed, 17 Mar 2004 15:49:15 -0500 Subject: [nycphp-talk] regexp: feeling stupid In-Reply-To: <4058B201.3010905@sklar.com> References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> <4058B201.3010905@sklar.com> Message-ID: Now I have to steer this in a different direction. The change in pattern works fine on my PowerBook (I have virtual domains set up on my account, so it behaves through the browser just as it would live). However, it doesn't work on the remote machine...the change doesn't happen. The remote server is a Linux shared server environment which I am familiar with, and normally I don't have these kinds of gotchas (I have like 9 domains hosted there). Does anyone have any insight as to what could be the difference between my local setup and the remote one, with respect to the preg_replace_callback() function? Both machines are above 4.3, so the function certainly ought to be available, and would be throwing an error if it weren't. ?? confused. Marc At 3:16 PM -0500 3/17/04, David Sklar wrote: >>many thanks. i was trying in my head to create a match for the >>beginning of the tag, then anything that is not "", and then >>. >> >>many times, like now, i find that my strategy is wrong with pattern matching. > >Thinking like a regex would is a weird way to think that requires a >lot of adjustment from normal human thought. > >The adjustment, IMHO, is complicated when you want to express a >negation in your pattern (like "anything that is not '') >because the ways to do that in regex land are tucked into twisty, >punctuation-riddled back alleys. > >"Mastering Regular Expressions" by Jeffrey Friedl >(http://regex.info) is the place to start if you want to climb the >regex mountain, though. > >David > > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk From patrick.fee at baesystems.com Wed Mar 17 15:59:57 2004 From: patrick.fee at baesystems.com (Fee, Patrick J (US SSA)) Date: Wed, 17 Mar 2004 15:59:57 -0500 Subject: [nycphp-talk] Document Management.... Message-ID: <728813C3358BF04CB3A3DA2341D44A71181131@e2k11.na.baesystems.com> OK guys, I got spoiled. I read a very kewl article a while back at Dev Shed about how to build a Document Management open source tool (check it out: http://www.devshed.com/c/a/PHP/Cracking-The-Vault-%28part-1%29). However, it used PHP & MySQL (my perfered developemnt tools).. Now I need to get a basic Document Managment solution for a customer using CF (4.5 or MX) and Access or Oracle. They DON'T need all the bells and whistles and they don't need content management. Simply a document repository that will allow you to check docs in and out for changing, read only access for most folk, and some basic version control. I think only Word, Excel, PDF and Project files will be involved... mostly Word Docs. Anything out there I can buy cheaply and modify in-house? (they need it yesterday... and it's much easier to get hours from them than ODC charges). I know we speak mostly PHP here (hence the title of the listserv). However, you folks have ALWAYS had great ideas in the past.... I appreciate your input.... thanks! Patrick J. Fee 202-203-6950 Patrick.Fee at baesystems.com -------------- next part -------------- A non-text attachment was scrubbed... Name: winmail.dat Type: application/ms-tnef Size: 4446 bytes Desc: not available URL: From phillip.powell at adnet-sys.com Wed Mar 17 16:12:57 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Wed, 17 Mar 2004 16:12:57 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <40588A18.5080009@att.net> <4058A681.4060803@adnet-sys.com> <4058A925.9070704@att.net> Message-ID: <4058BF59.9010900@adnet-sys.com> Ahh.. it WAS a Cartesian product in the long run.. I found this one buried query somewhere in the mountain of code that pulls up a few other list pages (pages of lists of interns) and the query indeed pulls a Cartesian product (including in one instance a boatload of empty rows to display on the screen).. thanx for your help! Phil John Lacey wrote: > > > Phil Powell wrote: > >> John Lacey wrote: >> >>> >>> prolly got a Cartesian product in the query... >> >> >> >> >> Actually, some of the queries could be producing Cartesian products, >> but there are those that simply have this: >> >> SELECT id, fname, lname, gpa, major, minor FROM interns ORDER BY >> lname, date desc >> >> For queries such as these (this is one of the queries that has on >> occasions thrown the Fatal Error upon attempt to use mysql_query() >> upon this statement (occurs in about 5 different scripts now). >> > > seems the query as indicated above, would not yield a CP, since it's > only a single table... I notice you're ordering by some columns that > are not in the requested list of fields you want returned... if you > can duplicate it, either try eliminating the date and desc in the > ORDER BY clause or include them in the SELECTED field list... > > doing this may lead to some further insights... > > > however, have you thought of the possibility that > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude >From hans not junk at nyphp.com Wed Mar 17 16:18:49 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id A1D8DA87D6 for ; Wed, 17 Mar 2004 16:18:49 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Wed, 17 Mar 2004 13:20:31 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE4010 at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Document Management.... Thread-Index: AcQMWqBA3RRRIqPyR+GRc7isdqfkNwAB6Wc5AADJkYA= From: "Hans Zaunere" To: "NYPHP Talk" Subject: [nycphp-talk] RE: Document Management.... X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Mar 2004 21:18:50 -0000 > OK guys, I got spoiled. I read a very kewl article a while=20 > back at Dev Shed about how to build a Document Management=20 > open source tool (check it out:=20 > http://www.devshed.com/c/a/PHP/Cracking-The-Vault-%28part-1%29). > =20 > However, it used PHP & MySQL (my perfered developemnt=20 > tools).. Now I need to get a basic Document Managment=20 > solution for a customer using CF (4.5 or MX) and Access or=20 > Oracle. They DON'T need all the bells and whistles and they=20 > don't need content management. Out of curiosity, why must it be in CF? And for that matter, why Access? PHP/Oracle would be a nice combo, but CF/Access... eek. Sorry though; don't know of anything that would do this in the CF world, although there's certainly some commercial packages I'm sure. That said, just code it in PHP and have the parser parse .cfm as .php :) H From dmintz at davidmintz.org Wed Mar 17 16:19:41 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 17 Mar 2004 16:19:41 -0500 (EST) Subject: [nycphp-talk] regexp: feeling... frivolous In-Reply-To: <4058B201.3010905@sklar.com> References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> <4058B201.3010905@sklar.com> Message-ID: On Wed, 17 Mar 2004, David Sklar wrote: > > "Mastering Regular Expressions" by Jeffrey Friedl (http://regex.info) is > the place to start if you want to climb the regex mountain, though. Indeed. I finally bought it -- it must be one of the most widely recommended computer books of all time -- and it's superb. Problem is I'm trying to use it as a bathroom book. Unfortunately -- or perhaps, fortunately, depending on your POV -- I don't spend long enough periods of time in there to give the book the sustained attention it requires and deserves. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From suzerain at suzerain.com Wed Mar 17 17:00:11 2004 From: suzerain at suzerain.com (Marc Antony Vose) Date: Wed, 17 Mar 2004 17:00:11 -0500 Subject: [nycphp-talk] regexp: feeling better In-Reply-To: References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> <4058B201.3010905@sklar.com> Message-ID: OK, I have figured out that my problem is a difference in configuration with regard to adding slashes. Silly. Long day, Marc At 3:49 PM -0500 3/17/04, Marc Antony Vose wrote: >Now I have to steer this in a different direction. > >The change in pattern works fine on my PowerBook (I have virtual >domains set up on my account, so it behaves through the browser just >as it would live). > >However, it doesn't work on the remote machine...the change doesn't >happen. The remote server is a Linux shared server environment >which I am familiar with, and normally I don't have these kinds of >gotchas (I have like 9 domains hosted there). > >Does anyone have any insight as to what could be the difference >between my local setup and the remote one, with respect to the >preg_replace_callback() function? > >Both machines are above 4.3, so the function certainly ought to be >available, and would be throwing an error if it weren't. > >?? confused. > >Marc > > > > > >At 3:16 PM -0500 3/17/04, David Sklar wrote: >>>many thanks. i was trying in my head to create a match for the >>>beginning of the tag, then anything that is not "", and then >>>. >>> >>>many times, like now, i find that my strategy is wrong with >>>pattern matching. >> >>Thinking like a regex would is a weird way to think that requires a >>lot of adjustment from normal human thought. >> >>The adjustment, IMHO, is complicated when you want to express a >>negation in your pattern (like "anything that is not '') >>because the ways to do that in regex land are tucked into twisty, >>punctuation-riddled back alleys. >> >>"Mastering Regular Expressions" by Jeffrey Friedl >>(http://regex.info) is the place to start if you want to climb the >>regex mountain, though. >> >>David >> >> >>_______________________________________________ >>talk mailing list >>talk at lists.nyphp.org >>http://lists.nyphp.org/mailman/listinfo/talk > >_______________________________________________ >talk mailing list >talk at lists.nyphp.org >http://lists.nyphp.org/mailman/listinfo/talk From pcosta at macromedia.com Wed Mar 17 17:03:33 2004 From: pcosta at macromedia.com (Phil Costa) Date: Wed, 17 Mar 2004 17:03:33 -0500 Subject: [nycphp-talk] RE: Document Management.... Message-ID: You might try looking in the ColdFusion exchange: http://www.macromedia.com/exchange . I'd also suggest sending your question to the forums on macromedia.com and houseoffusion.com Phil _____ From: Fee, Patrick J (US SSA) [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Fee, Patrick J (US SSA) Sent: Wednesday, March 17, 2004 4:00 PM To: NYPHP Talk Subject: Document Management.... OK guys, I got spoiled. I read a very kewl article a while back at Dev Shed about how to build a Document Management open source tool (check it out: http://www.devshed.com/c/a/PHP/Cracking-The-Vault-%28part-1%29 ). However, it used PHP & MySQL (my perfered developemnt tools).. Now I need to get a basic Document Managment solution for a customer using CF (4.5 or MX) and Access or Oracle. They DON'T need all the bells and whistles and they don't need content management. Simply a document repository that will allow you to check docs in and out for changing, read only access for most folk, and some basic version control. I think only Word, Excel, PDF and Project files will be involved... mostly Word Docs. Anything out there I can buy cheaply and modify in-house? (they need it yesterday... and it's much easier to get hours from them than ODC charges). I know we speak mostly PHP here (hence the title of the listserv). However, you folks have ALWAYS had great ideas in the past.... I appreciate your input.... thanks! Patrick J. Fee 202-203-6950 Patrick.Fee at baesystems.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From joel at tagword.com Wed Mar 17 17:31:49 2004 From: joel at tagword.com (Joel De Gan) Date: Wed, 17 Mar 2004 17:31:49 -0500 Subject: [nycphp-talk] regexp: feeling... frivolous In-Reply-To: References: <200403170004.32162.henry@beewh.com> <4058A5B1.5090506@sklar.com> <4058A9CA.2060607@sklar.com> <4058B201.3010905@sklar.com> Message-ID: <1079562709.5605.7.camel@bezel> David, You may want to check out http://regexlib.com/ searchable regex :) Is a lifesaver sometimes... On Wed, 2004-03-17 at 16:19, David Mintz wrote: > Indeed. I finally bought it -- it must be one of the most widely... -Joel De Gan ------------------------------------------------------- http://listbid.com - freelance PHP/MySQL jobs and programmers http://broadwords.com - PPC engine, get 1000 free clicks trial account. ------------------------------------------------------- From danielc at analysisandsolutions.com Wed Mar 17 17:46:25 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 17 Mar 2004 17:46:25 -0500 Subject: [nycphp-talk] need urgent help with MySQL indexing problem In-Reply-To: <405898FB.7080006@adnet-sys.com> References: <41EE526EC2D3C74286415780D3BA9F87FE3E9C@ehost011-1.exch011.intermedia.net> <405891C4.20402@adnet-sys.com> <20040317181456.GA24786@panix.com> <40589662.6090205@adnet-sys.com> <20040317182447.GA26273@panix.com> <405898FB.7080006@adnet-sys.com> Message-ID: <20040317224624.GA9059@panix.com> On Wed, Mar 17, 2004 at 01:29:15PM -0500, Phil Powell wrote: > Hans asked for the code that threw the > Fatal Error, which is what I did.. and the script that has the line that > throws the fatal error. ... > And I do not ignore people's advice I see. Then there's some other reason you decided to send (as ususal) that huge chunk of SQL object code rather than what Hans asked for: "Show me line 1135 and a couple lines surrounding it." And there must be some metaphysical reason you're compelled to continually fail to snip prior postings. Enjoy, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From jonbaer at jonbaer.net Wed Mar 17 19:49:12 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 17 Mar 2004 19:49:12 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu> <40582AF9.9010605@reuel.net> Message-ID: <000f01c40c82$d4da3ad0$6400a8c0@thinkpad> > FC2 is due out soon and will use the 2.6 kernel. May also have a more > current MySQL too. This is the part that Im interested in (as well as the new different X11 libs), thanks for everyones feedback, very informative! - Jon From jlacey at att.net Wed Mar 17 20:02:40 2004 From: jlacey at att.net (John Lacey) Date: Wed, 17 Mar 2004 18:02:40 -0700 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <000f01c40c82$d4da3ad0$6400a8c0@thinkpad> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu> <40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad> Message-ID: <4058F530.8030204@att.net> you may also want to check out Mandrake 10 Community at my fav store: http://www.edmunds-enterprises.com/linux/index.php John jon baer wrote: >>FC2 is due out soon and will use the 2.6 kernel. May also have a more >>current MySQL too. > > > This is the part that Im interested in (as well as the new different X11 > libs), thanks for everyones feedback, very informative! > > - Jon > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From dmintz at davidmintz.org Thu Mar 18 09:29:37 2004 From: dmintz at davidmintz.org (David Mintz) Date: Thu, 18 Mar 2004 09:29:37 -0500 (EST) Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <4058F530.8030204@att.net> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu> <40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad> <4058F530.8030204@att.net> Message-ID: I too am wringing my hands over what to do post-RH9. I wonder: wouldn't it be possible to stay with RH9 indefinitely and keep it up to date using one of those tools other than up2date? Meanwhile I've also looked at some Fedora reviews. Most have been positive. That would seem the most logical successor. But I am also thinking about giving Mandrake another shot -- I tried 9.x but it had just a few too many annoyances that I wasn't able to work out. Has anyone had experience with Gentoo? It seems intriguing, and they certainly seem to think highly of themselves (-: http://www.gentoo.org/ Alas, you never know how it's gonna work out on your machine until you try it. Too bad we don't have a couple weeks to spend just playing with distros. On Wed, 17 Mar 2004, John Lacey wrote: > you may also want to check out Mandrake 10 Community at my fav > store: > > http://www.edmunds-enterprises.com/linux/index.php > > John > > > jon baer wrote: > >>FC2 is due out soon and will use the 2.6 kernel. May also have a more > >>current MySQL too. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 >From hans not junk at nyphp.com Thu Mar 18 09:35:43 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id 28881A8636 for ; Thu, 18 Mar 2004 09:35:43 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? Date: Thu, 18 Mar 2004 06:37:25 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE41BA at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? Thread-Index: AcQM9XYVjy0GdiUbRtOPRK2hNwdpCAAANt1g From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Mar 2004 14:35:43 -0000 > Has anyone had experience with Gentoo? It seems intriguing, and they > certainly seem to think highly of themselves (-:=20 > http://www.gentoo.org/ I'd stay away from it personally; some others on this list could attest, too. Stick with Fedora/Redhat; solid distro. Or, go with FreeBSD, which is what gentoo wants to be. H From rsd at electronink.com Thu Mar 18 09:41:12 2004 From: rsd at electronink.com (Russ Demarest) Date: Thu, 18 Mar 2004 09:41:12 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu> <40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad> <4058F530.8030204@att.net> Message-ID: <4D3D3684-78EA-11D8-A8A3-000A957E8754@electronink.com> Without about Debian? It is the best distro I have ever used, and I have played with most of the major ones. The install can be a challenge (at first) but once installed, forget about it. Apt-Get rocks. If you want a commercial entity behind it check out Xandros, although I think it is aimed at the desktop. Gentoo is nice but as far as production seems a bear to keep updated. There is probably a way around this but spending hours or days to update a server seems a bit much, Russ On Mar 18, 2004, at 9:29 AM, David Mintz wrote: > > I too am wringing my hands over what to do post-RH9. I wonder: > wouldn't > it be possible to stay with RH9 indefinitely and keep it up to date > using > one of those tools other than up2date? > > Meanwhile I've also looked at some Fedora reviews. Most have been > positive. That would seem the most logical successor. But I am also > thinking about giving Mandrake another shot -- I tried 9.x but it had > just a few too many annoyances that I wasn't able to work out. > > Has anyone had experience with Gentoo? It seems intriguing, and they > certainly seem to think highly of themselves (-: http://www.gentoo.org/ > > Alas, you never know how it's gonna work out on your machine until you > try > it. Too bad we don't have a couple weeks to spend just playing with > distros. > > On Wed, 17 Mar 2004, John Lacey wrote: > >> you may also want to check out Mandrake 10 Community at my fav >> store: >> >> http://www.edmunds-enterprises.com/linux/index.php >> >> John >> >> >> jon baer wrote: >>>> FC2 is due out soon and will use the 2.6 kernel. May also have a >>>> more >>>> current MySQL too. > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jlacey at att.net Thu Mar 18 09:42:33 2004 From: jlacey at att.net (John Lacey) Date: Thu, 18 Mar 2004 07:42:33 -0700 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87FE41BA@ehost011-1.exch011.intermedia.net> References: <41EE526EC2D3C74286415780D3BA9F87FE41BA@ehost011-1.exch011.intermedia.net> Message-ID: <4059B559.1050907@att.net> Hans Zaunere wrote: >>Has anyone had experience with Gentoo? It seems intriguing, and they >>certainly seem to think highly of themselves (-: >>http://www.gentoo.org/ > > > I'd stay away from it personally; some others on this list could attest, > too. > > Stick with Fedora/Redhat; solid distro. Or, go with FreeBSD, which is > what gentoo wants to be. > and don't rule out a look at SuSE... From bpang at bpang.com Thu Mar 18 09:46:24 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Thu, 18 Mar 2004 09:46:24 -0500 (EST) Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.e du><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad><4058F530.8030204@att.net> Message-ID: <53471.38.117.145.89.1079621184.squirrel@www.bpang.com> I decided to bail on RH because I didn't like the direction things were going with Fedora. It's good to know that those who have commented here on using it have had a positive experience, but the way that RH described it, to me at least, sold it as potentially unreliable and nothing more than a kicker to get you to buy enterprise. I tried Gentoo, but I couldn't get it to install to my satisfaction. Perhaps I wasn't patient enough for it (so many options and things don't seem to be autodetected [good?/bad?]), or have I been too pampered by RH's and Mandrake's nice GUI (or TUI) installers? My new distro of choice is knoppix (knoppix.net). It's all on ONE CD, not 7 or 9 or whatever and you can boot from the CD to a well equipped KDE desktop from which you can test your HW compatibility before you do a full install. (Admission: I couldn't get it to 100% pick up the on-board ethernet on a HP laptop I bought, but I took a little leap of faith and it worked). What you get with an install is Debian all set up and ready to go with KDE, OO 1.1, Gimp, etc, etc, etc... It's taking me a little while to get used to KDE (from GNOME), but you can put GNOME on if you want. For updates, use apt-get. Install more packages? apt-get Now, just install XAMPP and in under an hour you can have a nice new LAMP server. Maybe this isn't bleeding-edge enough for some, like I think Fedora is supposed to be, but it's easy and it works. > > I too am wringing my hands over what to do post-RH9. I wonder: wouldn't > it be possible to stay with RH9 indefinitely and keep it up to date using > one of those tools other than up2date? > > Meanwhile I've also looked at some Fedora reviews. Most have been > positive. That would seem the most logical successor. But I am also > thinking about giving Mandrake another shot -- I tried 9.x but it had > just a few too many annoyances that I wasn't able to work out. > > Has anyone had experience with Gentoo? It seems intriguing, and they > certainly seem to think highly of themselves (-: http://www.gentoo.org/ > > Alas, you never know how it's gonna work out on your machine until you try > it. Too bad we don't have a couple weeks to spend just playing with > distros. From weyrick at roadsend.com Thu Mar 18 09:51:30 2004 From: weyrick at roadsend.com (Shannon Weyrick) Date: Thu, 18 Mar 2004 09:51:30 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87FE41BA@ehost011-1.exch011.intermedia.net> References: <41EE526EC2D3C74286415780D3BA9F87FE41BA@ehost011-1.exch011.intermedia.net> Message-ID: <4059B772.5050300@roadsend.com> Hans Zaunere wrote: >>Has anyone had experience with Gentoo? It seems intriguing, and they >>certainly seem to think highly of themselves (-: >>http://www.gentoo.org/ > > > I'd stay away from it personally; some others on this list could attest, > too. > > Stick with Fedora/Redhat; solid distro. Or, go with FreeBSD, which is > what gentoo wants to be. > I use gentoo on my work station, and I really like it. The portage system makes it easy to stay up to date, although you do burn a lot of time compiling. I've run into only a couple of problems with the portage build system - everything so far has pretty much "just worked". When I first tried it I imagined wasting hours figuring out why packages weren't building right, but this hasn't been the case at all. One of the things I like over other distros is I don't have to worry about upgrading to the inevitable next release or finding the latest version of a package, which always seems to be a hassle. Just stay up to date periodically with 'emerge -u world' and I'm always on the latest release. I haven't used gentoo on a server yet (we still use debian), but I'm considering it with my success so far on the work station... Shannon >From hans not junk at nyphp.com Thu Mar 18 10:25:16 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id EB42AA862F for ; Thu, 18 Mar 2004 10:25:15 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? Date: Thu, 18 Mar 2004 07:26:58 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE41D4 at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? Thread-Index: AcQM90gAM6XgH+FiS1604pOVkbV0pgABgPgQ From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Mar 2004 15:25:16 -0000 > Hans Zaunere wrote: >=20 > >>Has anyone had experience with Gentoo? It seems intriguing, and they > >>certainly seem to think highly of themselves (-:=20 > >>http://www.gentoo.org/ > >=20 > >=20 > > I'd stay away from it personally; some others on this list could attest, > > too. > >=20 > > Stick with Fedora/Redhat; solid distro. Or, go with FreeBSD, which is > > what gentoo wants to be. > >=20 >=20 > and don't rule out a look at SuSE... Very good point. It's often overlooked (in the US anyway), but arguably the best distro out there. H From patrick.fee at baesystems.com Thu Mar 18 11:03:34 2004 From: patrick.fee at baesystems.com (Fee, Patrick J (US SSA)) Date: Thu, 18 Mar 2004 11:03:34 -0500 Subject: [nycphp-talk] RE: Document Management.... Message-ID: <728813C3358BF04CB3A3DA2341D44A7118113C@e2k11.na.baesystems.com> Understood, Hans. My issue is that it will be an additional development on a customer's existing box. And that box contains other products that are utilizing CF and MS or Oracle db products. I also do not control the loading of software on the box... so I can't utilize a PHP/MySQL combo on the existing box. SO... this time round I had no choice. Thanks for the input though. I know this isn't a CF list... but we all seem to have such a wide ranging skill set that no search is complete without bouncing it off the list. Hope everyone is having a great week.... PJF -----Original Message----- From: talk-bounces at lists.nyphp.org on behalf of Hans Zaunere Sent: Wed 03/17/2004 04:20 PM To: NYPHP Talk Cc: Subject: [nycphp-talk] RE: Document Management.... > OK guys, I got spoiled. I read a very kewl article a while > back at Dev Shed about how to build a Document Management > open source tool (check it out: > http://www.devshed.com/c/a/PHP/Cracking-The-Vault-%28part-1%29). > > However, it used PHP & MySQL (my perfered developemnt > tools).. Now I need to get a basic Document Managment > solution for a customer using CF (4.5 or MX) and Access or > Oracle. They DON'T need all the bells and whistles and they > don't need content management. Out of curiosity, why must it be in CF? And for that matter, why Access? PHP/Oracle would be a nice combo, but CF/Access... eek. Sorry though; don't know of anything that would do this in the CF world, although there's certainly some commercial packages I'm sure. That said, just code it in PHP and have the parser parse .cfm as .php :) H _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk -------------- next part -------------- A non-text attachment was scrubbed... Name: winmail.dat Type: application/ms-tnef Size: 5390 bytes Desc: not available URL: From jonbaer at jonbaer.net Thu Mar 18 11:20:53 2004 From: jonbaer at jonbaer.net (jon baer) Date: Thu, 18 Mar 2004 11:20:53 -0500 Subject: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade? References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad><4058F530.8030204@att.net> <53471.38.117.145.89.1079621184.squirrel@www.bpang.com> Message-ID: <00a201c40d05$4e7a6c20$6400a8c0@thinkpad> > > My new distro of choice is knoppix (knoppix.net). > i second that, this is a great tool that when it first came out got me rolling into Linux fulltime and didnt screw up my laptop and then lead me to dual boot RH and XP on my Thinkpad ... I always thought it would make for a nice PHP (or NYPHP) distro loaded with more PHP stuff to showcase ... - jon From tgales at tgaconnect.com Thu Mar 18 12:20:42 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Thu, 18 Mar 2004 12:20:42 -0500 Subject: [nycphp-talk] PHP 5 Release Candidate 1 Message-ID: <003401c40d0d$582a4e40$e98d3818@oberon1> PHP 5 Release Candidate 1 at http://www.php.net/downloads.php T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From csnyder at chxo.com Thu Mar 18 12:20:37 2004 From: csnyder at chxo.com (Chris Snyder) Date: Thu, 18 Mar 2004 12:20:37 -0500 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <00a201c40d05$4e7a6c20$6400a8c0@thinkpad> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad><4058F530.8030204@att.net> <53471.38.117.145.89.1079621184.squirrel@www.bpang.com> <00a201c40d05$4e7a6c20$6400a8c0@thinkpad> Message-ID: <4059DA65.9040003@chxo.com> jon baer wrote (Re: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade?): > I always thought [Knoppix] would make for a nice PHP (or NYPHP) distro > loaded with more PHP stuff to showcase ... I'd like to guage interest in a Boot CD distribution produced by NYPHP to hand out at conferences and other groups' meetings. On boot it would start a fairly loaded AMP rig and expose a number of nifty PHP applications on port 80. By default, the CD would load configs and sample data into a ramdisk, but we would provide a control-panel interface to enable/disable/configure applications and hook them to remote data sources (or even mount remote filesystems via webdav). Instant mirror! What PHP applications would you want to see on such a disc? Has anyone created a custom Knoppix distro? FreeBSD also has a Live CD project... From joel at tagword.com Thu Mar 18 12:40:53 2004 From: joel at tagword.com (Joel De Gan) Date: Thu, 18 Mar 2004 12:40:53 -0500 Subject: [nycphp-talk] resource phpscripts.com Message-ID: <1079631653.5601.39.camel@bezel> Thought I would share this resource. http://phpscripts.com Donny is a very cool guy, and some of his tutorials on "how to make scripts go faster" actually answer quite a few questions I see posted on this list. Cheers. ------------------------------------------------------- http://listbid.com - freelance PHP/MySQL jobs and programmers http://broadwords.com - PPC engine, get 1000 free clicks trial account. ------------------------------------------------------- From rsd at electronink.com Thu Mar 18 12:43:21 2004 From: rsd at electronink.com (Russ Demarest) Date: Thu, 18 Mar 2004 12:43:21 -0500 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <4059DA65.9040003@chxo.com> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad><4058F530.8030204@att.net> <53471.38.117.145.89.1079621184.squirrel@www.bpang.com> <00a201c40d05$4e7a6c20$6400a8c0@thinkpad> <4059DA65.9040003@chxo.com> Message-ID: I would love to be able to run my LAMP apps on a Live CD but more for offline demo purposes. For example someone wants to demonstrate their website at a conference but has no internet connection. This would require being able to create Live CD's myself so any documentation you find or create would be great to see. Perhaps the goal would be to create a base (small as possible) LAMP Live image and then allow developers to add their apps as they needed to. Russ On Mar 18, 2004, at 12:20 PM, Chris Snyder wrote: > jon baer wrote (Re: [nycphp-talk] [ot] Red Hat Fedora - should i > upgrade?): > >> I always thought [Knoppix] would make for a nice PHP (or NYPHP) >> distro loaded with more PHP stuff to showcase ... > > > I'd like to guage interest in a Boot CD distribution produced by NYPHP > to hand out at conferences and other groups' meetings. On boot it > would start a fairly loaded AMP rig and expose a number of nifty PHP > applications on port 80. > > By default, the CD would load configs and sample data into a ramdisk, > but we would provide a control-panel interface to > enable/disable/configure applications and hook them to remote data > sources (or even mount remote filesystems via webdav). Instant mirror! > > What PHP applications would you want to see on such a disc? > > Has anyone created a custom Knoppix distro? FreeBSD also has a Live CD > project... > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From bpang at bpang.com Thu Mar 18 12:47:11 2004 From: bpang at bpang.com (bpang at bpang.com) Date: Thu, 18 Mar 2004 12:47:11 -0500 (EST) Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <4059DA65.9040003@chxo.com> References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.e du><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkp ad><4058F530.8030204@att.net> <53471.38.117.145.89.1079621184.squirrel@www.bpang.com><00a20 1c40d05$4e7a6c20$6400a8c0@thinkpad> <4059DA65.9040003@chxo.com> Message-ID: <35666.65.126.132.102.1079632031.squirrel@www.bpang.com> xampp comes with a few demos CD Collection - php + mysql Biorhythm - creates graph from user's bday Guest Book - php + mysql Instant Art - creates an image with user entered text Flash Art - creates a flash movie of user entered text with ming phpinfo() [ok, so it's hardly a demo] Phone Book - php + mysql and how about some of yopur stuff? image-list and pWhiteboard both are great! > jon baer wrote (Re: [nycphp-talk] [ot] Red Hat Fedora - should i upgrade?): > >> I always thought [Knoppix] would make for a nice PHP (or NYPHP) distro >> loaded with more PHP stuff to showcase ... > > > I'd like to guage interest in a Boot CD distribution produced by NYPHP > to hand out at conferences and other groups' meetings. On boot it would > start a fairly loaded AMP rig and expose a number of nifty PHP > applications on port 80. > > By default, the CD would load configs and sample data into a ramdisk, > but we would provide a control-panel interface to > enable/disable/configure applications and hook them to remote data > sources (or even mount remote filesystems via webdav). Instant mirror! > > What PHP applications would you want to see on such a disc? > > Has anyone created a custom Knoppix distro? FreeBSD also has a Live CD > project... > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > >From hans not junk at nyphp.com Thu Mar 18 13:04:51 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id EB362A862F for ; Thu, 18 Mar 2004 13:04:50 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] NYPHP live cdrom Date: Thu, 18 Mar 2004 10:06:31 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE429B at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] NYPHP live cdrom Thread-Index: AcQNDV0Yhn1gwyuERVewpial7xCt5QABaN0A From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Mar 2004 18:04:51 -0000 > jon baer wrote (Re: [nycphp-talk] [ot] Red Hat Fedora - should=20 > i upgrade?): >=20 > > I always thought [Knoppix] would make for a nice PHP (or NYPHP) distro=20 > > loaded with more PHP stuff to showcase ... >=20 >=20 > I'd like to guage interest in a Boot CD distribution produced by NYPHP > to hand out at conferences and other groups' meetings. On boot it would=20 > start a fairly loaded AMP rig and expose a number of nifty PHP=20 > applications on port 80. I think this is a very good idea; would be a great way to expose people to AMP and all the various applications available for it - NYppix CD anyone? :) > By default, the CD would load configs and sample data into a ramdisk,=20 > but we would provide a control-panel interface to=20 > enable/disable/configure applications and hook them to remote data=20 > sources (or even mount remote filesystems via webdav). Instant mirror! >=20 > What PHP applications would you want to see on such a disc? This is the hardest part; we'd have to build a list of available applications and take a survey. > Has anyone created a custom Knoppix distro? FreeBSD also has=20 > a Live CD project... Yeah, http://www.freesbie.org/ - we provided a mirror for them but they soaked a DS3 :) I'd be partial to use FreeBSD. A much tighter CD package could be made, IMO, plus we have close working relationships with Freesbie and http://NYCBUG.org - I think they'd love to collaborate on a project like this. H >From hans not junk at nyphp.com Thu Mar 18 13:05:51 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id D62C9A862F for ; Thu, 18 Mar 2004 13:05:50 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] RE: Document Management.... Date: Thu, 18 Mar 2004 10:07:33 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE429C at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] RE: Document Management.... Thread-Index: AcQMWqBA3RRRIqPyR+GRc7isdqfkNwAB6Wc5AADJkYAAJyKWOQAEdBGw From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Mar 2004 18:05:51 -0000 > Understood, Hans. My issue is that it will be an additional=20 > development on a customer's existing box. And that box=20 > contains other products that are utilizing CF and MS or=20 > Oracle db products. I also do not control the loading of=20 > software on the box... so I can't utilize a PHP/MySQL combo=20 > on the existing box. > SO... this time round I had no choice. Yeah, that's a tight spot. > Thanks for the input though. I know this isn't a CF list...=20 > but we all seem to have such a wide ranging skill set that no=20 > search is complete without bouncing it off the list. I'd still be interested to hear what you find. CF and PHP are probably closer than many realize. H From tgales at tgaconnect.com Thu Mar 18 13:06:18 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Thu, 18 Mar 2004 13:06:18 -0500 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <4059DA65.9040003@chxo.com> Message-ID: <003b01c40d13$b6982320$e98d3818@oberon1> Chris Snyder writes: > Has anyone created a custom Knoppix distro? FreeBSD also has > a Live CD > project... There is something called FreeSBIE. FreeSBIE project goals are mainly two: - To develop a suite of programs to be used to create your own CD, with all the personalizations you like - To make various ISO images available, maybe each one with its different goals and possible uses. Is that what you're talking about? T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From csnyder at chxo.com Thu Mar 18 13:42:30 2004 From: csnyder at chxo.com (Chris Snyder) Date: Thu, 18 Mar 2004 13:42:30 -0500 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad><4058F530.8030204@att.net> <53471.38.117.145.89.1079621184.squirrel@www.bpang.com> <00a201c40d05$4e7a6c20$6400a8c0@thinkpad> <4059DA65.9040003@chxo.com> Message-ID: <4059ED96.20000@chxo.com> Russ Demarest wrote: > Perhaps the goal would be to create a base (small as possible) LAMP > Live image and then allow developers to add their apps as they needed to. Agreed -- we all need to demo apps offline for clients and investors. We'd be using free tools to put this together, and we'd document what it takes to port a PHP app for use on the CD. Not sure what we'd provide in the way of a client, tho. If it's just a server (and no X-Windows / gui webbrowser) you'd still need to network the host in order to connect to it from a workstation. Obviously we could distribute a lightweight client environment with it. From csnyder at chxo.com Thu Mar 18 13:44:00 2004 From: csnyder at chxo.com (Chris Snyder) Date: Thu, 18 Mar 2004 13:44:00 -0500 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87FE429B@ehost011-1.exch011.intermedia.net> References: <41EE526EC2D3C74286415780D3BA9F87FE429B@ehost011-1.exch011.intermedia.net> Message-ID: <4059EDF0.5040008@chxo.com> Hans Zaunere wrote: >I'd be partial to use FreeBSD. A much tighter CD package could be made, >IMO, plus we have close working relationships with Freesbie and >http://NYCBUG.org - I think they'd love to collaborate on a project like >this. > I agree on the choice of FreeBSD, if only because that's what I'm most comfortable with. But there are two things that make me consider Linux: 1) Brand recognition among the non-technocentric 2) mount.davfs == nfs for the masses I'm sure both can be overcome. I'm happy to discuss point 2 at length with the BSD folk. :-) From jlacey at att.net Thu Mar 18 13:57:45 2004 From: jlacey at att.net (John Lacey) Date: Thu, 18 Mar 2004 11:57:45 -0700 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <4059EDF0.5040008@chxo.com> References: <41EE526EC2D3C74286415780D3BA9F87FE429B@ehost011-1.exch011.intermedia.net> <4059EDF0.5040008@chxo.com> Message-ID: <4059F129.3040608@att.net> Chris Snyder wrote: > Hans Zaunere wrote: > >> I'd be partial to use FreeBSD. A much tighter CD package could be made, >> IMO, plus we have close working relationships with Freesbie and >> http://NYCBUG.org - I think they'd love to collaborate on a project like >> this. >> > > I agree on the choice of FreeBSD, if only because that's what I'm most > comfortable with. But there are two things that make me consider Linux: > > 1) Brand recognition among the non-technocentric > 2) mount.davfs == nfs for the masses > > I'm sure both can be overcome. I'm happy to discuss point 2 at length > with the BSD folk. :-) > > I think choosing FreeBSD over Linux for a NYPHP CD give-a-way would be a mistake. John From csnyder at chxo.com Thu Mar 18 14:09:29 2004 From: csnyder at chxo.com (Chris Snyder) Date: Thu, 18 Mar 2004 14:09:29 -0500 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <4059F129.3040608@att.net> References: <41EE526EC2D3C74286415780D3BA9F87FE429B@ehost011-1.exch011.intermedia.net> <4059EDF0.5040008@chxo.com> <4059F129.3040608@att.net> Message-ID: <4059F3E9.2080106@chxo.com> John Lacey wrote: > I think choosing FreeBSD over Linux for a NYPHP CD give-a-way would be > a mistake. Hmmm... but why? We could be distro agnostic and produce a specification that developers enact using their favorite OS's live cd tools, along with the scripts and data we provide. I imagine that would work along the lines of "Build your filesystem and binaries, then checkout this CVS module and use this httpd.conf and my.cnf" From jlacey at att.net Thu Mar 18 14:20:35 2004 From: jlacey at att.net (John Lacey) Date: Thu, 18 Mar 2004 12:20:35 -0700 Subject: [nycphp-talk] NYPHP live cdrom In-Reply-To: <4059F3E9.2080106@chxo.com> References: <41EE526EC2D3C74286415780D3BA9F87FE429B@ehost011-1.exch011.intermedia.net> <4059EDF0.5040008@chxo.com> <4059F129.3040608@att.net> <4059F3E9.2080106@chxo.com> Message-ID: <4059F683.6070402@att.net> Chris Snyder wrote: > John Lacey wrote: > >> I think choosing FreeBSD over Linux for a NYPHP CD give-a-way would be >> a mistake. > > > Hmmm... but why? > We could be distro agnostic and produce a specification that developers > enact using their favorite OS's live cd tools, along with the scripts > and data we provide. I imagine that would work along the lines of "Build > your filesystem and binaries, then checkout this CVS module and use this > httpd.conf and my.cnf" > first, Brand recognition... second, other [sup]ported apps Let me throw this one out Chris: I'm all for platform-agnostic -- it's all about AMP... so, perhaps in addition to a run-from-CD-NYPHP customized distro we think about putting something together on a CD that features both the Linux and Windows version of XAMPP with all the requisite apps that you want. More than enough room. XAMMP doesn't "install" (registry-wise) unless you install[.bat] as a service, leaving behind little to clean up -- just remove the folder on Windows (typically C:\xampp) and the directory on Linux (typically /opt/lampp). People will be much more likely to fire something up on their current system where there is familiarity, rather than load up a different o/s and run that way. Of course, when you're actually running a demo for someone, that's a non-issue. John From jonbaer at jonbaer.net Thu Mar 18 14:56:36 2004 From: jonbaer at jonbaer.net (jon baer) Date: Thu, 18 Mar 2004 14:56:36 -0500 Subject: [nycphp-talk] NYPHP live cdrom References: <007c01c40bda$26d2c5e0$6400a8c0@thinkpad><20040317052319.GC31024@ncc.edu><40582AF9.9010605@reuel.net> <000f01c40c82$d4da3ad0$6400a8c0@thinkpad><4058F530.8030204@att.net> <53471.38.117.145.89.1079621184.squirrel@www.bpang.com><00a201c40d05$4e7a6c20$6400a8c0@thinkpad> <4059DA65.9040003@chxo.com> Message-ID: <014b01c40d23$1f5d4840$6400a8c0@thinkpad> > What PHP applications would you want to see on such a disc? > id vote for special themed versions of phpmyadmin and oscommerce that were NYPHP oriented ... what would really help would be a few PHP5 OO-based apps (or before/after PHP5) ... the list is practically endless but should be focused on handing out @ special events i guess ... the gd/xml/rss/soap topics would be a nice feature even if they are small demos + include all the NYPHP presentations so far because some of them are simply awesome by themselves ... - jon From jonbaer at jonbaer.net Thu Mar 18 15:22:26 2004 From: jonbaer at jonbaer.net (jon baer) Date: Thu, 18 Mar 2004 15:22:26 -0500 Subject: [nycphp-talk] php5 rc1 download problems ... Message-ID: <000601c40d26$bb2578d0$6400a8c0@thinkpad> is anyone else experiencing download problems with it or is it just me? http://www.php.net/get/php-5.0.0RC1-Win32.zip/from/a/mirror - jon pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 From jlacey at att.net Fri Mar 19 09:38:02 2004 From: jlacey at att.net (John Lacey) Date: Fri, 19 Mar 2004 07:38:02 -0700 Subject: [nycphp-talk] interesting news Message-ID: <405B05CA.3060906@att.net> as some of you may have heard already, Novell is going to GPL SuSE YAST... From tgales at tgaconnect.com Fri Mar 19 10:02:59 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Fri, 19 Mar 2004 10:02:59 -0500 Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) Message-ID: <000601c40dc3$452d3170$e98d3818@oberon1> SuSE Linux 9.1 personal and professional editions (scheduled to be released in May) will support the recently released Linux 2.6 kernel. http://www.eweek.com/article2/0,1759,1550563,00.asp?kc=EWNWS031804DTX1K000 0599 SuSE 9.1 Personal will consist of a pair of CDs, one of which is a "LiveCD". The LiveCD configures the user's machine so that the user can get to all of his existing data without modifying the existing installation. T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com From jonbaer at jonbaer.net Fri Mar 19 11:28:43 2004 From: jonbaer at jonbaer.net (jon baer) Date: Fri, 19 Mar 2004 11:28:43 -0500 Subject: [nycphp-talk] Re: php5 rc1 download problems ... Message-ID: <004001c40dcf$3ef4d2c0$6400a8c0@thinkpad> seems problem was resolved ... RC1 seems extremely solid is anyone else testing it out on their boxes? - jon ----- Original Message ----- From: "jon baer" To: Sent: Thursday, March 18, 2004 3:22 PM Subject: php5 rc1 download problems ... > is anyone else experiencing download problems with it or is it just me? > > http://www.php.net/get/php-5.0.0RC1-Win32.zip/from/a/mirror From chubbard at next-online.net Fri Mar 19 13:36:28 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Fri, 19 Mar 2004 10:36:28 -0800 Subject: [nycphp-talk] multiple classes writing to a common container Message-ID: <405B3DAC.5090201@next-online.net> All, I've run into an interesting (for me) problem. And I thought you all might enjoy the solution that I used. Here's the scenario: I've got multiple classes that are called by a single php file. I've got a "debug" class that I would like to use to collect debug information that is generated by the multiple classes. Then if the page is set to debug "on" then the collected debug information from all the classes should be displayed out in one large dump to the screen (either as a separate window aka Smarty), or at the bottom of the screen. I'd like to have the multiple classes "know" that they are in debug mode vs regular mode. I've tried a number of approaches and I have read the manual and tutorials. I've experimented with static and pass by reference. I don't think the "extends" structure will work for me, as I will have multiple classes, and there's no inherent relationship between the classes (other than they're being called by the same page). I spent a bunch of time spinning around on this, until I changed how I was passing the reference of the collector to the working classes. Here's the (working) code: collection[] = $item; return TRUE; } function getCollection() { echo "
";
        print_r($this->collection);
        echo "
"; //return TRUE; } } class testA { /* * this class takes three numbers and checks to see * if the first two add up to the last one */ var $collection; function testA($a) { /* $a is the reference to the Collector object */ $this->collection =& $a; } function test($a, $b, $c) { if ($c == ($a + $b)) { echo " testA is true
"; return TRUE; }else{ echo " testA is false
"; $this->error($a ." + ". $b ." != ". $c); return FALSE; } } function error($text) { /* adds the text to the common collection */ $tmp = $this->collection->addItem($text); return TRUE; } } class testB { /* * this class takes three numbers and checks to see * if subtracting the first from the second equals * the last one */ var $collection; function testB($a) { /* $a is the reference to the Collector object */ $this->collection =& $a; } function test($a, $b, $c) { if ($c == ($a - $b)) { echo " testB is true
"; return TRUE; }else{ echo " testB is false
"; $this->error($a ." - ". $b ." != ". $c); return FALSE; } } function error($text) { /* adds the text to the common collection */ $tmp = $this->collection->addItem($text); return TRUE; } } $coll = new Collector(); // create a new collection $testA = new testA(&$coll); // pass the reference to the common collection $testB = new testB(&$coll); // pass the same collection reference to this class /* create an array of test data */ $tests = array ( 0 => array(1, 1, 2), 1 => array (1, 2, 3), 2 => array(1, 3, 4), 3 => array(1, 3, 2), 4 => array (1, 4, 3), 5 => array(7, 3, 4) ); $count = count($tests); $msg = 0; /* run through the tests */ for ($x=0; $x<$count; $x++) { if (!$testA->test($tests[$x][0],$tests[$x][1],$tests[$x][2])) // addition test { $msg++; // if the test fails then increment the flag, so we know to display the collection } if (!$testB->test($tests[$x][0],$tests[$x][1],$tests[$x][2])) // subtraction test { $msg++; // if the test fails then increment the flag, so we know to display the collection } } if ($msg > 0) { echo $coll->getCollection(); } ?> This code outputs: testA is true testB is false testA is true testB is false testA is true testB is false testA is false testB is false testA is false testB is false testA is false testB is true Array ( [0] => 1 - 1 != 2 [1] => 1 - 2 != 3 [2] => 1 - 3 != 4 [3] => 1 + 3 != 2 [4] => 1 - 3 != 2 [5] => 1 + 4 != 3 [6] => 1 - 4 != 3 [7] => 7 + 3 != 4 ) -- Chris Hubbard Sr Software Developer Next Online 425 563 4153 From dmintz at davidmintz.org Fri Mar 19 14:13:54 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 19 Mar 2004 14:13:54 -0500 (EST) Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) In-Reply-To: <000601c40dc3$452d3170$e98d3818@oberon1> References: <000601c40dc3$452d3170$e98d3818@oberon1> Message-ID: I saw this on slashdot today as well. Drool drool! Looks tasty. Too bad it's non-free. But I think I might open my wallet for this. On Fri, 19 Mar 2004, Tim Gales wrote: > > SuSE Linux 9.1 personal and professional editions (scheduled to be > released in May) will support the recently released Linux 2.6 kernel. > > http://www.eweek.com/article2/0,1759,1550563,00.asp?kc=EWNWS031804DTX1K000 > 0599 > > SuSE 9.1 Personal will consist of a pair of CDs, one of which is a > "LiveCD". > The LiveCD configures the user's machine so that the user can get to all > of > his existing data without modifying the existing installation. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From dmintz at davidmintz.org Fri Mar 19 14:20:54 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 19 Mar 2004 14:20:54 -0500 (EST) Subject: [nycphp-talk] question re DB_Error (PEAR) In-Reply-To: References: <000601c40dc3$452d3170$e98d3818@oberon1> Message-ID: There is no method that returns the native error code, to get it you have to do something like parse it out of the string returned by getUserInfo() True or false? --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From Cbielanski at inta.org Fri Mar 19 14:26:22 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 19 Mar 2004 14:26:22 -0500 Subject: [nycphp-talk] multiple classes writing to a common container Message-ID: I wonder if it would be possible for the classes to receive a handle to a debug object (since you have a debug class) then each class on which you'd want to report merely calls a method on it's "localized" debugger. Instantiate a single debug object, hand its reference to the constructor in each class, set it "on" or "off" and let the debug object itself control how and when it dumps to the screen. On paper, it sounds like it should play nicely. Please apprise me of the situation if it doesn't. I'd love to know how it turns out. ~Chris > I spent a bunch of time spinning around on this, until I > changed how I > was passing the reference of the collector to the working classes. > > Here's the (working) code: > > /** > * various tests > */ > > class Collector > { > var $collection; > > function addItem($item) > { > $this->collection[] = $item; > return TRUE; > } > > function getCollection() > { > echo "
";
>         print_r($this->collection);
>         echo "
"; > //return TRUE; > } > } > > class testA > { > /* > * this class takes three numbers and checks to see > * if the first two add up to the last one > */ > var $collection; > > function testA($a) > { > > /* $a is the reference to the Collector object */ > $this->collection =& $a; > } > > function test($a, $b, $c) > { > if ($c == ($a + $b)) > { > echo " testA is true
"; > return TRUE; > }else{ > echo " testA is false
"; > $this->error($a ." + ". $b ." != ". $c); > return FALSE; > } > } > > function error($text) > { > /* adds the text to the common collection */ > $tmp = $this->collection->addItem($text); > return TRUE; > } > } > > class testB > { > /* > * this class takes three numbers and checks to see > * if subtracting the first from the second equals > * the last one > */ > var $collection; > > function testB($a) > { > /* $a is the reference to the Collector object */ > $this->collection =& $a; > } > > function test($a, $b, $c) > { > if ($c == ($a - $b)) > { > echo " testB is true
"; > return TRUE; > }else{ > echo " testB is false
"; > $this->error($a ." - ". $b ." != ". $c); > return FALSE; > } > } > > function error($text) > { > /* adds the text to the common collection */ > $tmp = $this->collection->addItem($text); > return TRUE; > } > } > > > $coll = new Collector(); // create a new collection > $testA = new testA(&$coll); // pass the reference to the > common collection > $testB = new testB(&$coll); // pass the same collection reference to > this class > > /* create an array of test data */ > $tests = array ( > 0 => array(1, 1, 2), 1 => array (1, 2, 3), 2 => array(1, 3, 4), > 3 => array(1, 3, 2), 4 => array (1, 4, 3), 5 => array(7, 3, 4) > ); > > $count = count($tests); > > $msg = 0; > > /* run through the tests */ > for ($x=0; $x<$count; $x++) > { > if (!$testA->test($tests[$x][0],$tests[$x][1],$tests[$x][2])) // > addition test > { > $msg++; // if the test fails then increment the flag, so we > know to display the collection > } > if (!$testB->test($tests[$x][0],$tests[$x][1],$tests[$x][2])) // > subtraction test > { > $msg++; // if the test fails then increment the flag, > so we know > to display the collection > } > } > > if ($msg > 0) > { > echo $coll->getCollection(); > } > > ?> > > This code outputs: > testA is true > testB is false > testA is true > testB is false > testA is true > testB is false > testA is false > testB is false > testA is false > testB is false > testA is false > testB is true > > Array > ( > [0] => 1 - 1 != 2 > [1] => 1 - 2 != 3 > [2] => 1 - 3 != 4 > [3] => 1 + 3 != 2 > [4] => 1 - 3 != 2 > [5] => 1 + 4 != 3 > [6] => 1 - 4 != 3 > [7] => 7 + 3 != 4 > ) > > > -- > Chris Hubbard > Sr Software Developer > Next Online > 425 563 4153 > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From epaul at speakeasy.net Fri Mar 19 14:33:43 2004 From: epaul at speakeasy.net (epaul at speakeasy.net) Date: Fri, 19 Mar 2004 19:33:43 +0000 Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) Message-ID: What are the added benefits the Linux kernel 2.6 will offer vs the 2.4 kernel? Evan > -----Original Message----- > From: David Mintz [mailto:dmintz at davidmintz.org] > Sent: Friday, March 19, 2004 07:13 PM > To: 'NYPHP Talk' > Subject: Re: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) > > > I saw this on slashdot today as well. Drool drool! Looks tasty. Too bad > it's non-free. But I think I might open my wallet for this. > > On Fri, 19 Mar 2004, Tim Gales wrote: > > > > > SuSE Linux 9.1 personal and professional editions (scheduled to be > > released in May) will support the recently released Linux 2.6 kernel. > > > > http://www.eweek.com/article2/0,1759,1550563,00.asp?kc=EWNWS031804DTX1K000 > > 0599 > > > > SuSE 9.1 Personal will consist of a pair of CDs, one of which is a > > "LiveCD". > > The LiveCD configures the user's machine so that the user can get to all > > of > > his existing data without modifying the existing installation. > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From mitchy at spacemonkeylabs.com Fri Mar 19 15:09:34 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 19 Mar 2004 15:09:34 -0500 Subject: [nycphp-talk] question re DB_Error (PEAR) In-Reply-To: References: <000601c40dc3$452d3170$e98d3818@oberon1> Message-ID: <405B537E.3080503@spacemonkeylabs.com> David Mintz wrote: > There is no method that returns the native error code, to get it you have > to do something like parse it out of the string returned by getUserInfo() > > True or false? False. if ( DB::isError( $result ) ) { die ( $result->getDebugInfo() ); } From dmintz at davidmintz.org Fri Mar 19 15:27:31 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 19 Mar 2004 15:27:31 -0500 (EST) Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) In-Reply-To: References: Message-ID: On Fri, 19 Mar 2004 epaul at speakeasy.net wrote: > What are the added benefits the Linux kernel 2.6 will offer vs the 2.4 kernel? > Evan Well, 2.6 is .2 higher than 2.4. PS It's Friday afternoon, that means we're allowed to be silly. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From dmintz at davidmintz.org Fri Mar 19 15:44:20 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 19 Mar 2004 15:44:20 -0500 (EST) Subject: [nycphp-talk] question re DB_Error (PEAR) In-Reply-To: <405B537E.3080503@spacemonkeylabs.com> References: <000601c40dc3$452d3170$e98d3818@oberon1> <405B537E.3080503@spacemonkeylabs.com> Message-ID: On Fri, 19 Mar 2004, Mitch Pirtle wrote: > David Mintz wrote: > > > There is no method that returns the native error code, to get it you have > > to do something like parse it out of the string returned by getUserInfo() > > > > True or false? > > False. > > if ( DB::isError( $result ) ) { > die ( $result->getDebugInfo() ); > } Nuh uh. That's why I said "something *like* parse it out of the string returned by..." [emphasis added] (-: The string returned by getDebugInfo() is identical (well ok, I mean == ) to that returned by getUserInfo() in the code I'm playing with right now. The point being, it looks like you gotta use something like mysql_errno() (in which case, so much for your abstraction) or parse it yourself. Hardly the end of the world, just... interesting. Sort of. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From dmintz at davidmintz.org Fri Mar 19 15:46:20 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 19 Mar 2004 15:46:20 -0500 (EST) Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) In-Reply-To: References: Message-ID: OK, let me try to redeem myself after that last wiseassery: "The new 2.6 Linux kernel enables the efficient distribution of hardware resources, for example guaranteeing high-quality music and video performance even as other applications are started and run simultaneously. The DMA mode also accelerates CD and DVD burning. The Advanced Linux Sound Architecture (ALSA), which is spearheaded by Novell's SUSE LINUX business unit, is now an integral component of kernel 2.6. ALSA supports most common sound cards and provides diverse audio functions. Kernel 2.6 boasts an improved ACPI (Advanced Configuration and Power Interface) implementation, enabling more-efficient power management and extending battery operation time for laptops." ---http://www.suse.com/us/company/press/press_releases/archive04/91.html On Fri, 19 Mar 2004, David Mintz wrote: > On Fri, 19 Mar 2004 epaul at speakeasy.net wrote: > > > What are the added benefits the Linux kernel 2.6 will offer vs the 2.4 kernel? > > Evan > > > Well, 2.6 is .2 higher than 2.4. > > PS It's Friday afternoon, that means we're allowed to be silly. > --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From tgales at tgaconnect.com Fri Mar 19 15:46:53 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Fri, 19 Mar 2004 15:46:53 -0500 Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) In-Reply-To: Message-ID: <001201c40df3$50093050$e98d3818@oberon1> RE: > What are the added benefits the Linux kernel 2.6 will > offer vs the 2.4 kernel? Briefly the 2.6 Linux kernel has: contributions from uClinux (Linux for Microcontrollers project) support for Axis Communications' ETRAX CRIS ("Code Reduced Instruction Set") processors (some support was in 2.4 already) support for NUMA ("Non-Uniform Memory Access") (I am a little sketchy on what NUMA is exactly. But from what I gather certain segments of memory can have a stronger affinity for a cpu -- or a dma device acting like a cpu -- in a multi-cpu setup. NUMA allows a cpu to sort of hop-over memory with which it doesn't have much/enough affinity.) Support for hyper-threading ala Pentium 4. The kernel is preemptible -- the Linux kernel can be interrupted to do something and return to what it was doing. I/O scheduler had a makeover. futex support (Fast User-Space Mutexes) (I am a little sketchy on futexes too -- I think they help to serialize access to the user space mutexes to help prevent race conditions something like "spinlocks" with an aditional priority based mechanism) In summary, the 2.6 Linux kernel has more and better hardware support. And a bunch of 'high end' enhancements for servers. T. Gales & Associates Helping People Connect with Technology http://www.tgaconnect.com From epaul at speakeasy.net Fri Mar 19 15:56:03 2004 From: epaul at speakeasy.net (epaul at speakeasy.net) Date: Fri, 19 Mar 2004 20:56:03 +0000 Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) Message-ID: Tim, Thanks for the info! > -----Original Message----- > From: Tim Gales [mailto:tgales at tgaconnect.com] > Sent: Friday, March 19, 2004 08:46 PM > To: ''NYPHP Talk'' > Subject: RE: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) > > RE: > > What are the added benefits the Linux kernel 2.6 will > > offer vs the 2.4 kernel? > > Briefly the 2.6 Linux kernel has: > > contributions from uClinux > (Linux for Microcontrollers project) > > support for Axis Communications' ETRAX CRIS > ("Code Reduced Instruction Set") processors > (some support was in 2.4 already) > > support for NUMA > ("Non-Uniform Memory Access") > > (I am a little sketchy on what NUMA is exactly. > But from what I gather certain segments of > memory can have a stronger affinity for a > cpu -- or a dma device acting like a cpu -- > in a multi-cpu setup. NUMA allows a cpu to > sort of hop-over memory with which it doesn't > have much/enough affinity.) > > Support for hyper-threading ala Pentium 4. > > The kernel is preemptible -- the Linux kernel > can be interrupted to do something and return to > what it was doing. > > I/O scheduler had a makeover. > > futex support > (Fast User-Space Mutexes) > > (I am a little sketchy on futexes too -- > I think they help to serialize access to > the user space mutexes to help prevent > race conditions something like "spinlocks" > with an aditional priority based mechanism) > > In summary, the 2.6 Linux kernel has more and > better hardware support. And a bunch of > 'high end' enhancements for servers. > > > T. Gales & Associates > Helping People Connect with Technology > http://www.tgaconnect.com > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From epaul at speakeasy.net Fri Mar 19 15:58:29 2004 From: epaul at speakeasy.net (epaul at speakeasy.net) Date: Fri, 19 Mar 2004 20:58:29 +0000 Subject: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) Message-ID: Dave, you have redeem yourself:)... Thanks for the info! > -----Original Message----- > From: David Mintz [mailto:dmintz at davidmintz.org] > Sent: Friday, March 19, 2004 08:46 PM > To: 'NYPHP Talk' > Subject: Re: [nycphp-talk] more about SUSE ( 9.1 will support Linux 2.6 kernel) > > > OK, let me try to redeem myself after that last wiseassery: > > "The new 2.6 Linux kernel enables the efficient distribution of hardware > resources, for example guaranteeing high-quality music and video > performance even as other applications are started and run simultaneously. > The DMA mode also accelerates CD and DVD burning. The Advanced Linux Sound > Architecture (ALSA), which is spearheaded by Novell's SUSE LINUX business > unit, is now an integral component of kernel 2.6. ALSA supports most > common sound cards and provides diverse audio functions. Kernel 2.6 boasts > an improved ACPI (Advanced Configuration and Power Interface) > implementation, enabling more-efficient power management and extending > battery operation time for laptops." > > ---http://www.suse.com/us/company/press/press_releases/archive04/91.html > > > On Fri, 19 Mar 2004, David Mintz wrote: > > > On Fri, 19 Mar 2004 epaul at speakeasy.net wrote: > > > > > What are the added benefits the Linux kernel 2.6 will offer vs the 2.4 kernel? > > > Evan > > > > > > Well, 2.6 is .2 higher than 2.4. > > > > PS It's Friday afternoon, that means we're allowed to be silly. > > > > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From dcech at phpwerx.net Fri Mar 19 16:24:03 2004 From: dcech at phpwerx.net (Dan Cech) Date: Fri, 19 Mar 2004 16:24:03 -0500 Subject: [nycphp-talk] multiple classes writing to a common container In-Reply-To: <405B3DAC.5090201@next-online.net> References: <405B3DAC.5090201@next-online.net> Message-ID: <405B64F3.40202@phpwerx.net> Another way of achieving this functionality without the need to pass references to the classes is to use a static var and call the functions as class functions rather than object methods. This would look like: class Collector { function addItem ($item) { Collector::collection($item); return TRUE; } function getCollection () { echo "
";
     print_r(Collector::collection ());
     echo "
"; // return TRUE; // return Collector::collection (); } function collection ($item = NULL) { static $collection = array (); if ( isset ($item) ) { $collection[] = $item; } return $collection; } } Now any class can use the collection by calling Collector::addItem () and Collector::getCollection (). This approach means that you never have to worry about whether your classes are using the same instance of the collector, and will also function correctly as a drop in replacement for the collector class below. Dan Chris Hubbard wrote: > All, > I've run into an interesting (for me) problem. And I thought you all > might enjoy the solution that I used. > > Here's the scenario: > I've got multiple classes that are called by a single php file. I've > got a "debug" class that I would like to use to collect debug > information that is generated by the multiple classes. Then if the > page is set to debug "on" then the collected debug information from all > the classes should be displayed out in one large dump to the screen > (either as a separate window aka Smarty), or at the bottom of the > screen. I'd like to have the multiple classes "know" that they are in > debug mode vs regular mode. > I've tried a number of approaches and I have read the manual and > tutorials. I've experimented with static and pass by reference. I > don't think the "extends" structure will work for me, as I will have > multiple classes, and there's no inherent relationship between the > classes (other than they're being called by the same page). > > I spent a bunch of time spinning around on this, until I changed how I > was passing the reference of the collector to the working classes. > > Here's the (working) code: > > /** > * various tests > */ > > class Collector > { > var $collection; > function addItem($item) > { > $this->collection[] = $item; > return TRUE; > } > function getCollection() > { > echo "
";
>        print_r($this->collection);
>        echo "
"; > //return TRUE; > } > } > > class testA > { > /* > * this class takes three numbers and checks to see > * if the first two add up to the last one > */ > var $collection; > function testA($a) > { > /* $a is the reference to the Collector object */ > $this->collection =& $a; > } > function test($a, $b, $c) > { > if ($c == ($a + $b)) > { > echo " testA is true
"; > return TRUE; > }else{ > echo " testA is false
"; > $this->error($a ." + ". $b ." != ". $c); > return FALSE; > } > } > > function error($text) > { > /* adds the text to the common collection */ > $tmp = $this->collection->addItem($text); > return TRUE; > } > } > > class testB > { > /* > * this class takes three numbers and checks to see > * if subtracting the first from the second equals > * the last one > */ > var $collection; > > function testB($a) > { > /* $a is the reference to the Collector object */ > $this->collection =& $a; > } > > function test($a, $b, $c) > { > if ($c == ($a - $b)) > { > echo " testB is true
"; > return TRUE; > }else{ > echo " testB is false
"; > $this->error($a ." - ". $b ." != ". $c); > return FALSE; > } > } > > function error($text) > { > /* adds the text to the common collection */ > $tmp = $this->collection->addItem($text); > return TRUE; > } > } > > > $coll = new Collector(); // create a new collection > $testA = new testA(&$coll); // pass the reference to the common collection > $testB = new testB(&$coll); // pass the same collection reference to > this class > > /* create an array of test data */ > $tests = array ( > 0 => array(1, 1, 2), 1 => array (1, 2, 3), 2 => array(1, 3, 4), > 3 => array(1, 3, 2), 4 => array (1, 4, 3), 5 => array(7, 3, 4) > ); > > $count = count($tests); > > $msg = 0; > > /* run through the tests */ > for ($x=0; $x<$count; $x++) > { > if (!$testA->test($tests[$x][0],$tests[$x][1],$tests[$x][2])) // > addition test > { > $msg++; // if the test fails then increment the flag, so we know > to display the collection > } > if (!$testB->test($tests[$x][0],$tests[$x][1],$tests[$x][2])) // > subtraction test > { > $msg++; // if the test fails then increment the flag, so we know > to display the collection > } > } > > if ($msg > 0) > { > echo $coll->getCollection(); > } > > ?> > > This code outputs: > testA is true > testB is false > testA is true > testB is false > testA is true > testB is false > testA is false > testB is false > testA is false > testB is false > testA is false > testB is true > > Array > ( > [0] => 1 - 1 != 2 > [1] => 1 - 2 != 3 > [2] => 1 - 3 != 4 > [3] => 1 + 3 != 2 > [4] => 1 - 3 != 2 > [5] => 1 + 4 != 3 > [6] => 1 - 4 != 3 > [7] => 7 + 3 != 4 > ) > > From mitchy at spacemonkeylabs.com Fri Mar 19 16:48:32 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 19 Mar 2004 16:48:32 -0500 Subject: [nycphp-talk] question re DB_Error (PEAR) In-Reply-To: References: <000601c40dc3$452d3170$e98d3818@oberon1> <405B537E.3080503@spacemonkeylabs.com> Message-ID: <405B6AB0.1060201@spacemonkeylabs.com> David Mintz wrote: > On Fri, 19 Mar 2004, Mitch Pirtle wrote: > > Nuh uh. That's why I said "something *like* parse it out of the string > returned by..." [emphasis added] (-: The string returned by getDebugInfo() > is identical (well ok, I mean == ) to that returned by getUserInfo() in > the code I'm playing with right now. > > The point being, it looks like you gotta use something like mysql_errno() > (in which case, so much for your abstraction) or parse it yourself. Whups, then I misunderstood (: My bad. You are trying to get the exact error as reported by the database, correct? And if so, is the purpose for error reporting or somesuch? -- Mitch From dmintz at davidmintz.org Fri Mar 19 17:04:43 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 19 Mar 2004 17:04:43 -0500 (EST) Subject: [nycphp-talk] question re DB_Error (PEAR) In-Reply-To: <405B6AB0.1060201@spacemonkeylabs.com> References: <000601c40dc3$452d3170$e98d3818@oberon1> <405B537E.3080503@spacemonkeylabs.com> <405B6AB0.1060201@spacemonkeylabs.com> Message-ID: On Fri, 19 Mar 2004, Mitch Pirtle wrote: > David Mintz wrote: > > On Fri, 19 Mar 2004, Mitch Pirtle wrote: > > > > Nuh uh. That's why I said "something *like* parse it out of the string > > returned by..." [emphasis added] (-: The string returned by getDebugInfo() > > is identical (well ok, I mean == ) to that returned by getUserInfo() in > > the code I'm playing with right now. > > > > The point being, it looks like you gotta use something like mysql_errno() > > (in which case, so much for your abstraction) or parse it yourself. > > Whups, then I misunderstood (: My bad. > > You are trying to get the exact error as reported by the database, > correct? And if so, is the purpose for error reporting or somesuch? Actually my wording was a little ambiguous, now that I look at it yet again. The native error code is *contained* in the string returned by getUserInfo() so in that sense... nevermind. (-: Yeah, I would like to trap Duplicate entry (1062) and tell the user, you can't do that. I'm working with a table where the rows represent people and the email must be either NULL or unique. So if DB::isError($result), I'm parsing $result->getUserInfo(). I know that PEAR has its own DB_ERROR_ALREADY_EXISTS constant and I guess that's the equivalent of MySQL's 1062. Thanks Mitch. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From danielc at analysisandsolutions.com Fri Mar 19 18:41:55 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 19 Mar 2004 18:41:55 -0500 Subject: [nycphp-talk] question re DB_Error (PEAR) In-Reply-To: References: <000601c40dc3$452d3170$e98d3818@oberon1> <405B537E.3080503@spacemonkeylabs.com> <405B6AB0.1060201@spacemonkeylabs.com> Message-ID: <20040319234154.GA28953@panix.com> Hi David: On Fri, Mar 19, 2004 at 05:04:43PM -0500, David Mintz wrote: > > again. The native error code is *contained* in the string returned by > getUserInfo() so in that sense... nevermind. (-: Yeah, there's no method/property that contains the DBMS's native error number. > I know that PEAR has its own DB_ERROR_ALREADY_EXISTS constant and I guess > that's the equivalent of MySQL's 1062. Also, keep in mind, that MySQL is the only DBMS that uses that somewhat vague ALREADY_EXISTS constant. The others use DB_ERROR_CONSTRAINT. MySQL can be told to use the universal/correct constant, you can turn on the DB_PORTABILITY_ERRORS error mapping portability option. http://pear.php.net/manual/en/package.database.db.intro-portability.php --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From emm at scriptdigital.com Mon Mar 22 14:55:53 2004 From: emm at scriptdigital.com (Emmanuel =?iso-8859-1?Q?D=E9carie?=) Date: Mon, 22 Mar 2004 14:55:53 -0500 Subject: [nycphp-talk] Are-you going to Montreal? Message-ID: Hello people, Are-you going to Montr?al for the Conf?rence PHP Qu?bec? I'm from Montr?al, and the conf is 10 mn walking from my apartment. It could be fun to do some sort of get together. I know that Adam T. is coming but I don't know if others from NY-PHP are coming. Anyway, if you want to hang out with a native Montrealer with a broken English, just let me know. I'll be pleased to help you appreciate my home town. Cheers -Emmanuel -- Emmanuel D?carie / Programmation pour le Web - Programming for the Web - Blog: - AIM: scriptdigital From epaul at speakeasy.net Mon Mar 22 11:03:27 2004 From: epaul at speakeasy.net (epaul at speakeasy.net) Date: Mon, 22 Mar 2004 16:03:27 +0000 Subject: [nycphp-talk] Looking for PHP/MySQL Developers! Message-ID: Hi All, I am looking for PHP/MySQL developers who would be interested in participating in an Open-Source Project. All levels of experience is welcome. This project would involved in building a Content Management System (CMS) with specialized application modules for the education industry. For those who are interested please email me at epaul at speakeasy.net Thanks! Evan -------------- next part -------------- An HTML attachment was scrubbed... URL: From nyphp at websapp.com Mon Mar 22 15:04:24 2004 From: nyphp at websapp.com (Daniel Kushner) Date: Mon, 22 Mar 2004 15:04:24 -0500 Subject: [nycphp-talk] Are-you going to Montreal? In-Reply-To: Message-ID: <200403222004.i2MK4QSq024183@ns5.oddcast.com> Hey Emmanuel, I'll be there, but with my tight schedule I don't think that I'll have time for sight seeing :( I should also be hanging around the Zend stand, come say hi :) -Daniel > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of Emmanuel D?carie > Sent: Monday, March 22, 2004 2:56 PM > To: talk at lists.nyphp.org > Subject: [nycphp-talk] Are-you going to Montreal? > > Hello people, > > Are-you going to Montr?al for the Conf?rence PHP Qu?bec? > > > I'm from Montr?al, and the conf is 10 mn walking from my apartment. > > It could be fun to do some sort of get together. I know that > Adam T. is coming but I don't know if others from NY-PHP are coming. > > Anyway, if you want to hang out with a native Montrealer with > a broken English, just let me know. I'll be pleased to help > you appreciate my home town. > > Cheers > -Emmanuel > -- > Emmanuel D?carie / Programmation pour le Web - Programming > for the Web - Blog: > - AIM: > scriptdigital > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From joel at tagword.com Mon Mar 22 15:12:45 2004 From: joel at tagword.com (Joel De Gan) Date: Mon, 22 Mar 2004 15:12:45 -0500 Subject: [nycphp-talk] PHPackage, install packager. Message-ID: <1079986365.6439.93.camel@bezel> Hi all, Not sure if there is an announce list so I am sending this here. I got a wild-hair this weekend and wrote this program: http://package.pagepossible.com/ Downloads available. Saying everyone here is a PHP programmer I thought it might be interesting to see your reactions to this program and any ideas/thoughts you had before it gets posted on Hotscripts. The idea is, it compiles your entire application into a compressed single-file php script that sets up the application for the end-users. Source is on the site. Thanks Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site From jlacey at att.net Mon Mar 22 15:15:23 2004 From: jlacey at att.net (John Lacey) Date: Mon, 22 Mar 2004 13:15:23 -0700 Subject: [nycphp-talk] Looking for PHP/MySQL Developers! In-Reply-To: References: Message-ID: <405F495B.7030202@att.net> epaul at speakeasy.net wrote: > Hi All, > > I am looking for PHP/MySQL developers who would be interested > in participating in an Open-Source Project. All levels of experience > is welcome. This project would involved in building a Content Management > System (CMS) with specialized application modules for the education > industry. For those who are interested please email me at > epaul at speakeasy.net > > Thanks! > > Evan > The last time you were fishing around for "education help" Hans went to the trouble of setting up a site so that you could publish a specification of your intentions. You promptly disappeared. John From csnyder at chxo.com Mon Mar 22 15:35:15 2004 From: csnyder at chxo.com (Chris Snyder) Date: Mon, 22 Mar 2004 15:35:15 -0500 Subject: [nycphp-talk] PHPackage, install packager. In-Reply-To: <1079986365.6439.93.camel@bezel> References: <1079986365.6439.93.camel@bezel> Message-ID: <405F4E03.8000402@chxo.com> Joel De Gan wrote: >I got a wild-hair this weekend and wrote this program: >http://package.pagepossible.com/ > > I'm intrigued, this seems like a great idea. I ran into two trouble spots in the demo: - There are problems with escaping " and ' in the fields on the Install settings form - As a sysadmin, I don't like the single-file, precompiled approach. If a user handed me one of these to install on a server I would decline. Is there a tar.gz option that's a little more transparent? >From hans not junk at nyphp.com Mon Mar 22 15:37:29 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id 96133A85EA for ; Mon, 22 Mar 2004 15:37:29 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Mon, 22 Mar 2004 12:39:14 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE4BEE at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Back Online Thread-Index: AcQQTb09msO/S4cIRIy+bY3SRDmeow== From: "Hans Zaunere" To: "NYPHP Talk" , Cc: Subject: [nycphp-talk] Back Online X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Mar 2004 20:37:30 -0000 Had some downtime over the weekend folks... sorry about that. Everything is backonline and should remain stable. vinum is best used when the box isn't 25 blocks away in a locked office. H >From hans not junk at nyphp.com Mon Mar 22 15:51:37 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id A8D95A85EA for ; Mon, 22 Mar 2004 15:51:37 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] Are-you going to Montreal? Date: Mon, 22 Mar 2004 12:53:23 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87FE4C04 at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] Are-you going to Montreal? Thread-Index: AcQQR7mKFz1HQ1oTTomMoVcSt95WXwAB9/8A From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Mar 2004 20:51:38 -0000 > Are-you going to Montr=E9al for the Conf=E9rence PHP Qu=E9bec? > >=20 > I'm from Montr=E9al, and the conf is 10 mn walking from my apartment. >=20 > It could be fun to do some sort of get together. I know that=20 > Adam T. is coming > but I don't know if others from NY-PHP are coming. >=20 > Anyway, if you want to hang out with a native Montrealer with=20 > a broken English, > just let me know. I'll be pleased to help you appreciate my home town. Myself and several others will be heading up. Looking forward to = finally meeting Emmanuel... see you at the conference. H From joel at tagword.com Mon Mar 22 16:07:42 2004 From: joel at tagword.com (Joel De Gan) Date: Mon, 22 Mar 2004 16:07:42 -0500 Subject: [nycphp-talk] PHPackage, install packager. In-Reply-To: <405F4E03.8000402@chxo.com> References: <1079986365.6439.93.camel@bezel> <405F4E03.8000402@chxo.com> Message-ID: <1079989662.6439.102.camel@bezel> On Mon, 2004-03-22 at 15:35, Chris Snyder wrote: > - There are problems with escaping " and ' in the fields on the Install > settings form Thanks.. will check the addslashes etc. in that section. (I see what you mean) > > - As a sysadmin, I don't like the single-file, precompiled approach. If > a user handed me one of these to install on a server I would decline. Is > there a tar.gz option that's a little more transparent? Part of the idea is to keep it small/simple and packaged in a container. an application developer could offer standard install and then offer one of these as a package for the user who wanted a web-based install. It really boiled down to what I have been wanting to do for some apps I give out and a way to standardize things and stop those emails asking about permissions and how to create a mysql database. Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site From epaul at speakeasy.net Mon Mar 22 16:02:28 2004 From: epaul at speakeasy.net (epaul at speakeasy.net) Date: Mon, 22 Mar 2004 21:02:28 +0000 Subject: [nycphp-talk] Looking for PHP/MySQL Developers! Message-ID: Hi John, I was never aware that hans had set up a site for the education portal/cms project. This is news to me! I know we spoke about setting something up in the past but nothing really came out it. Also, unfortunately the past several months my job situation had changed and had to work from out of town for a while. So, that set things back for me. Anyway, I really want to get this project on track and I am really looking for some people to join and help out on this. I will speak to hans again and see what was set up and move forward with this. Hans, would like to hear your comments on this! Evan > -----Original Message----- > From: John Lacey [mailto:jlacey at att.net] > Sent: Monday, March 22, 2004 08:15 PM > To: 'NYPHP Talk' > Subject: Re: [nycphp-talk] Looking for PHP/MySQL Developers! > > > > epaul at speakeasy.net wrote: > > > Hi All, > > > > I am looking for PHP/MySQL developers who would be interested > > in participating in an Open-Source Project. All levels of experience > > is welcome. This project would involved in building a Content Management > > System (CMS) with specialized application modules for the education > > industry. For those who are interested please email me at > > epaul at speakeasy.net > > > > Thanks! > > > > Evan > > > > The last time you were fishing around for "education help" Hans > went to the trouble of setting up a site so that you could > publish a specification of your intentions. You promptly > disappeared. > > John > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jlacey at att.net Mon Mar 22 16:17:04 2004 From: jlacey at att.net (John Lacey) Date: Mon, 22 Mar 2004 14:17:04 -0700 Subject: [nycphp-talk] Looking for PHP/MySQL Developers! In-Reply-To: References: Message-ID: <405F57D0.7070306@att.net> epaul at speakeasy.net wrote: > Hi John, I was never aware that hans had > set up a site for the education portal/cms > project. This is news to me! I know we spoke > about setting something up in the past but > nothing really came out it. > > Anyway, I really want to get this project on > track and I am really looking for some people > to join and help out on this. I will speak to > hans again and see what was set up and move > forward with this. Now that you appear to be back into it, you might think about documenting the portal specs since that's where we left off. As I recall, at the time you went and registered a half-dozen or so domains and you said you were going to put a spec together for comments. That's when Hans set up the site so that you could post the document. John From danielc at analysisandsolutions.com Sat Mar 20 17:01:47 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Sat, 20 Mar 2004 17:01:47 -0500 Subject: [nycphp-talk] Re: php5 rc1 download problems ... In-Reply-To: <004001c40dcf$3ef4d2c0$6400a8c0@thinkpad> References: <004001c40dcf$3ef4d2c0$6400a8c0@thinkpad> Message-ID: <20040320220147.GA13493@panix.com> Yo Jon: On Fri, Mar 19, 2004 at 11:28:43AM -0500, jon baer wrote: > seems problem was resolved ... RC1 seems extremely solid is anyone else > testing it out on their boxes? I am. Now that the long standing bugs that had caused me problems are gone, things are working fairly smoothly. The only oddity is the change in how returns from exec() are handled, which I thought was going to be changed back to how PHP 4 did it. Whatever. Ciao, --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From danielc at analysisandsolutions.com Mon Mar 22 21:04:14 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 22 Mar 2004 21:04:14 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #241 stuff Message-ID: <20040323020413.GA13192@panix.com> PHPBB ViewTopic.PHP "postdays" Cross-Site Scripting Vulnerab... http://www.securityfocus.com/bid/9865 The usual suspects, plus a few wannabe's... PHPBB ViewForum.PHP "topicdays" Cross-Site Scripting Vulnera... http://www.securityfocus.com/bid/9866 PHPBB Search.PHP Search_Results Parameter SQL Injection Vuln... http://www.securityfocus.com/bid/9883 PhpBB admin_words.php Multiple Vulnerabilities http://www.securityfocus.com/bid/9896 GNU SPIP Unspecified PHP Code Execution Vulnerability http://www.securityfocus.com/bid/9875 PHP-Nuke Modules.php Multiple Cross-Site Scripting Vulnerabi... http://www.securityfocus.com/bid/9879 PHP-Nuke Image Tag Admin Command Execution Vulnerability http://www.securityfocus.com/bid/9895 PHP-Nuke Error Manager Module Multiple Vulnerabilities http://www.securityfocus.com/bid/9911 WarpSpeed 4nAlbum Module For PHPNuke Multiple Vulnerabilitie... http://www.securityfocus.com/bid/9881 Phorum Multiple Module Cross-Site Scripting Vulnerability http://www.securityfocus.com/bid/9882 JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulner... http://www.securityfocus.com/bid/9887 JelSoft VBulletin ForumDisplay.PHP Cross-Site Scripting Vuln... http://www.securityfocus.com/bid/9888 JelSoft VBulletin ShowThread.PHP Cross-Site Scripting Vulner... http://www.securityfocus.com/bid/9889 Mambo Open Source Index.PHP Cross-Site Scripting Vulnerabili... http://www.securityfocus.com/bid/9890 Mambo Open Source Index.PHP SQL Injection Vulnerability http://www.securityfocus.com/bid/9891 -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From mitchy at spacemonkeylabs.com Mon Mar 22 23:52:57 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Mon, 22 Mar 2004 23:52:57 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #241 stuff In-Reply-To: <20040323020413.GA13192@panix.com> References: <20040323020413.GA13192@panix.com> Message-ID: <405FC2A9.2000701@spacemonkeylabs.com> Daniel Convissor wrote: > Mambo Open Source Index.PHP Cross-Site Scripting Vulnerabili... > http://www.securityfocus.com/bid/9890 > > Mambo Open Source Index.PHP SQL Injection Vulnerability > http://www.securityfocus.com/bid/9891 *sigh* Oh well, finally convinced them to switch to an abstraction library, this will definitely be easier to deal with in the future :) -- Mambo core developer From adam at trachtenberg.com Tue Mar 23 01:28:18 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 23 Mar 2004 01:28:18 -0500 (EST) Subject: [nycphp-talk] Are-you going to Montreal? In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87FE4C04@ehost011-1.exch011.intermedia.net> References: <41EE526EC2D3C74286415780D3BA9F87FE4C04@ehost011-1.exch011.intermedia.net> Message-ID: On Mon, 22 Mar 2004, Hans Zaunere wrote: > > Are-you going to Montr?al for the Conf?rence PHP Qu?bec? > > > > > > I'm from Montr?al, and the conf is 10 mn walking from my apartment. > > > > It could be fun to do some sort of get together. I know that > > Adam T. is coming > > but I don't know if others from NY-PHP are coming. Yes. I will be there. Tomorrow is known as "Slide Writing Day," as I need to update my old set of slides to contain all the cool new stuff that's happened in the last 6 months. > Myself and several others will be heading up. Looking forward to finally meeting Emmanuel... see you at the conference. Excellent. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From phillip.powell at adnet-sys.com Tue Mar 23 12:03:06 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Tue, 23 Mar 2004 12:03:06 -0500 Subject: [nycphp-talk] "getimagesize()" for non-images in PHP? Message-ID: <40606DCA.7030903@adnet-sys.com> > > >I am well aware of getimagesize() to use to determine if something is a >legitimate image. However, one of the requirements will be to determine >if something is a legitimate something else, e.g., a XLS spreadsheet is >an actual XLS spreadsheet or a PDF is a legitimate PDF or a video is an >actual video. > >The only thing I could think of was to parse through /etc/mime.types, >which is a horrific, laborious process of searching through thousands >of records to determine if the MIME type of whatever was uploaded is >what it says it is. Is there a PHP-based more-practical method to >determine this? > >Thanx >Phil > -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From adam at trachtenberg.com Tue Mar 23 12:39:01 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 23 Mar 2004 12:39:01 -0500 (EST) Subject: [nycphp-talk] "getimagesize()" for non-images in PHP? In-Reply-To: <40606DCA.7030903@adnet-sys.com> References: <40606DCA.7030903@adnet-sys.com> Message-ID: On Tue, 23 Mar 2004, Phil Powell wrote: > >what it says it is. Is there a PHP-based more-practical method to > >determine this? http://us2.php.net/mime-magic -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From greg at click3x.com Tue Mar 23 14:58:42 2004 From: greg at click3x.com (Greg Faber) Date: Tue, 23 Mar 2004 14:58:42 -0500 Subject: [nycphp-talk] Best OO PHP book Message-ID: <7C27085B-7D04-11D8-90DB-000502F1DDFC@click3x.com> Hello, What would you guys suggest is the best OO PHP book? The books I've read on PHP so far only touch on the subject of OO programming, I want something that goes way in depth. Give me your thoughts please. Thanks, greg >From hans not junk at nyphp.com Tue Mar 23 15:01:10 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id DA2FFA85EA for ; Tue, 23 Mar 2004 15:01:09 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] PHPackage, install packager. Date: Tue, 23 Mar 2004 12:02:54 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87011376BC at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] PHPackage, install packager. Thread-Index: AcQQSPbSufbYZrmBSKKw1hIivBcUDgAyL7rw From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Mar 2004 20:01:10 -0000 > The idea is, it compiles your entire application into a compressed > single-file php script that sets up the application for the end-users. I think this is a cool idea. Maybe a quick presentation on it next month, Joel? I haven't really seen anything like it in PHP but have looked. H >From hans not junk at nyphp.com Tue Mar 23 15:03:27 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id EC257A85EA for ; Tue, 23 Mar 2004 15:03:26 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] Looking for PHP/MySQL Developers! Date: Tue, 23 Mar 2004 12:05:11 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F87011376BF at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] Looking for PHP/MySQL Developers! Thread-Index: AcQQUxaxVdfAGZQyRj6mChF0hoEY5QAvs2nA From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Mar 2004 20:03:27 -0000 > > Hi John, I was never aware that hans had > > set up a site for the education portal/cms > > project. This is news to me! I know we spoke > > about setting something up in the past but > > nothing really came out it. > >=20 > > Anyway, I really want to get this project on > > track and I am really looking for some people > > to join and help out on this. I will speak to > > hans again and see what was set up and move > > forward with this. >=20 > Now that you appear to be back into it, you might think about=20 > documenting the portal specs since that's where we left off. As=20 > I recall, at the time you went and registered a half-dozen or so=20 > domains and you said you were going to put a spec together for=20 > comments. That's when Hans set up the site so that you could=20 > post the document. We now have a formal project acceptance and development process and this would be a great start on it. It's outlined in the charter, http://nyphp.org/charter and we're looking for additional general documentation to fill in the details of submitting, developing, and completing a project. Anyone is welcome to join in... there's much left to do. H From adam at trachtenberg.com Tue Mar 23 15:16:08 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 23 Mar 2004 15:16:08 -0500 (EST) Subject: [nycphp-talk] Best OO PHP book In-Reply-To: <7C27085B-7D04-11D8-90DB-000502F1DDFC@click3x.com> References: <7C27085B-7D04-11D8-90DB-000502F1DDFC@click3x.com> Message-ID: On Tue, 23 Mar 2004, Greg Faber wrote: > What would you guys suggest is the best OO PHP book? > The books I've read on PHP so far only touch on the subject of OO > programming, I want something that goes way in depth. > Give me your thoughts please. That book does not exist largely because you can't really do OO in PHP 4. Now that PHP 5 is coming near, I would guess that your book will come out sometime in 2005. However, while I've only skimmed it myself, I've heard excellent things about George Schlossnagle's "Advanced PHP Programming" (http://www.schlossnagle.org/~george/blog/) It has a chapter or two OO and patterns, so that's my "PHP Book of the Month" for March 2004. Stay tuned for April's selection. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From shiflett at php.net Tue Mar 23 15:26:14 2004 From: shiflett at php.net (Chris Shiflett) Date: Tue, 23 Mar 2004 12:26:14 -0800 (PST) Subject: [nycphp-talk] Best OO PHP book In-Reply-To: <7C27085B-7D04-11D8-90DB-000502F1DDFC@click3x.com> Message-ID: <20040323202614.14702.qmail@web14308.mail.yahoo.com> --- Greg Faber wrote: > What would you guys suggest is the best OO PHP book? >From what I've read so far, I would recommend Advanced PHP Programming by George Schlossnagle. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From shiflett at php.net Tue Mar 23 15:28:39 2004 From: shiflett at php.net (Chris Shiflett) Date: Tue, 23 Mar 2004 12:28:39 -0800 (PST) Subject: [nycphp-talk] PHPackage, install packager. In-Reply-To: <41EE526EC2D3C74286415780D3BA9F87011376BC@ehost011-1.exch011.intermedia.net> Message-ID: <20040323202839.59664.qmail@web14301.mail.yahoo.com> --- Hans Zaunere wrote: > > The idea is, it compiles your entire application into a compressed > > single-file php script that sets up the application for the > > end-users. > > I think this is a cool idea. Maybe a quick presentation on it next > month, Joel? I haven't really seen anything like it in PHP but have > looked. Sounds cool to me, too. I've never used it, but are you sure bcompiler doesn't already do this? http://pecl.php.net/package/bcompiler Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From dmintz at davidmintz.org Tue Mar 23 16:04:30 2004 From: dmintz at davidmintz.org (David Mintz) Date: Tue, 23 Mar 2004 16:04:30 -0500 (EST) Subject: [nycphp-talk] when MySQL "rollback" doesn't In-Reply-To: <20040323202614.14702.qmail@web14308.mail.yahoo.com> References: <20040323202614.14702.qmail@web14308.mail.yahoo.com> Message-ID: I have a class that does some db access, and I have a subclass of it that does some db access. Both classes use a reference to the same global (PEAR) db_mysql instance. A method in the subclass does some db stuff through an instance of its parent, and then goes on if it works; if it fails I would like to roll back, and return. And guess what: it doesn't roll back. In the method body I am setting autocommit to 0, and saying "start transaction," and doing everything right that I can think of. I'm sparing you the code excerpt in the interest of brevity; it would be hard to provide enough to show the full picture without abusing bandwidth and patience. I'm hoping that just based on the above description someone might catch something that I don't. Is there some subtle gotcha with classes and objects in PHP4 that I'm running into? I'm working with 4.3.4 and Win2K and MySQL 4.0.13-max-nt-log. I have tried making the relevant methods in both parent and child report their connection id, and they say they are using the same connection id. btw I have run little tests where I do stuff with the same tables, and roll it back, but without using these objects/classes, and it works. So it isn't something stupid like wrong table type. Gratefully, --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From phillip.powell at adnet-sys.com Tue Mar 23 16:09:45 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Tue, 23 Mar 2004 16:09:45 -0500 Subject: [nycphp-talk] "getimagesize()" for non-images in PHP? References: <40606DCA.7030903@adnet-sys.com> Message-ID: <4060A799.7010908@adnet-sys.com> Adam Maccabee Trachtenberg wrote: >On Tue, 23 Mar 2004, Phil Powell wrote: > > > >>>what it says it is. Is there a PHP-based more-practical method to >>>determine this? >>> >>> > >http://us2.php.net/mime-magic > >-adam > > > I have PHP 4.3.2 and I get a "Call to undefined function mime_content_type()" fatal error. I suspect this function is not widely supported. User notes indicated some security holes with a workaround. Phil -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From adam at trachtenberg.com Tue Mar 23 16:18:17 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 23 Mar 2004 16:18:17 -0500 (EST) Subject: [nycphp-talk] "getimagesize()" for non-images in PHP? In-Reply-To: <4060A799.7010908@adnet-sys.com> References: <40606DCA.7030903@adnet-sys.com> <4060A799.7010908@adnet-sys.com> Message-ID: On Tue, 23 Mar 2004, Phil Powell wrote: > I have PHP 4.3.2 and I get a "Call to undefined function > mime_content_type()" fatal error. I suspect this function is not widely > supported. User notes indicated some security holes with a workaround. Then I guess you're out of luck. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From joel at tagword.com Tue Mar 23 16:28:58 2004 From: joel at tagword.com (Joel De Gan) Date: Tue, 23 Mar 2004 16:28:58 -0500 Subject: [nycphp-talk] PHPackage, install packager. In-Reply-To: <20040323202839.59664.qmail@web14301.mail.yahoo.com> References: <20040323202839.59664.qmail@web14301.mail.yahoo.com> Message-ID: <1080077338.4874.24.camel@bezel> On Tue, 2004-03-23 at 15:28, Chris Shiflett wrote: > > I think this is a cool idea. Maybe a quick presentation on it next > > month, Joel? I haven't really seen anything like it in PHP but have > > looked. Thanks, still have a couple bugs but will have a release 2 soon. As for a presentation.. what do you mean? you mean at the meetings? I honestly have not been to one yet.. I have a lot of online tutorials and many programs I have written, and have a *lot* of sourcecode out there as almost everything I do, I opensource. http://www.zend.com/comm_person.php?id=96 <- me let me know, perhaps I could show up and talk about some stuff.. but honestly would prefer to sit in on at least one meeting first... > > Sounds cool to me, too. I've never used it, but are you sure bcompiler > doesn't already do this? I am positive that bcompiler does not do this. bcompiler keep the source closed so you can attempt to protect your source. What I am doing is similar to the old 'shell packages' so that files are compressed into one file that figures out where everything goes depending on user input. I make heavy use of eval() on compressed code that is eval'd on the fly but the original source is unpacked so it is not a mechanism you can use to 'protect' your code. I am currently mulling over some ideas for integrating 'patch' and 'diff' into php applications so that you could have a 'live upgrade' option in php apps and that stores diffs and versions so that users could be notified immediatly that certain files have been updated and allowed to upgrade just those files at that time. (sort of like what windows users have with that msupdate thing) I am thinking of offering that in PHPackage as an option, but it would require a server component as well. So this may be a plugin for later. Patch used as it is safe for files that have been changed slightly.. I.e. config options and such (same reason it is used in cvs) Anyway... thank you guys for the great feedback.. I would love to see this used by other people than myself. (oh, the images are encoded in PHPackage and I have been told there was an issue in windows on IE.. anyone see a broken image?) Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site From jonbaer at jonbaer.net Tue Mar 23 16:34:14 2004 From: jonbaer at jonbaer.net (jon baer) Date: Tue, 23 Mar 2004 16:34:14 -0500 Subject: [nycphp-talk] Best OO PHP book References: <7C27085B-7D04-11D8-90DB-000502F1DDFC@click3x.com> Message-ID: <005001c4111e$96a95f70$6400a8c0@thinkpad> I dont think you need to get bogged down looking for a PHP-OO (PHP5), I think OO in general (or @ least the terms) stem from pretty much any OO-based language ... http://java.sun.com/docs/books/tutorial/java/concepts/ http://ootips.org/ - Jon ----- Original Message ----- From: "Greg Faber" To: "NYPHP Talk" Sent: Tuesday, March 23, 2004 2:58 PM Subject: [nycphp-talk] Best OO PHP book > Hello, > > What would you guys suggest is the best OO PHP book? > The books I've read on PHP so far only touch on the subject of OO > programming, I want something that goes way in depth. > Give me your thoughts please. > > Thanks, > greg > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Tue Mar 23 17:18:05 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 23 Mar 2004 17:18:05 -0500 Subject: [nycphp-talk] when MySQL "rollback" doesn't In-Reply-To: References: <20040323202614.14702.qmail@web14308.mail.yahoo.com> Message-ID: <20040323221805.GA21727@panix.com> Hi David: On Tue, Mar 23, 2004 at 04:04:30PM -0500, David Mintz wrote: > classes and objects in PHP4 that I'm running into? I'm working with 4.3.4 > and Win2K and MySQL 4.0.13-max-nt-log. ... snip ... > btw I have run little tests where I do stuff with the same tables, and > roll it back, but without using these objects/classes, and it works. So it > isn't something stupid like wrong table type. Not to doubt you, but, uh, I guess I will, you're using innodb tables, right? Okay, you are. So, you've got a bug in your code. Echo out each query before you execute it. Make sure the scripts/queries are executing in the order you expect. Then, if that doesn't get you no love, go to the length of copying/pasting the queries in the same order into a MySQL command line shell. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From Rafi.Sheikh at Ingenix.com Tue Mar 23 17:32:30 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Tue, 23 Mar 2004 16:32:30 -0600 Subject: [nycphp-talk] gd on Unix Message-ID: Hi list: BASICS: apache 1.3.27, PHP 4.0.6, IBM server How does one enables gd on Unix? I do know that on WIN2K-pro one needs to uncomment the extensions for gd in php.ini...but in Unix I dont see any listings (gd_php.so, etc)...how can I find it (so I could tell the admin)... any suggestions? Here is what I have from the php_info() Configure Command './configure' '--prefix=/opt/freeware' '--with-apxs' '--with-mysql' '--with-config-file-path=/etc/opt/freeware/apache' '--with-ftp' '--with-zlib' '--with-system-regex' '--without-xml' '--with-ftp' '--with-ssl' Configuration File (php.ini) Path /etc/opt/freeware/apache/php.ini ***no gd info*** SERVER_SOFTWARE Apache/1.3.27 (Unix) PHP/4.0.6 This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From dmintz at davidmintz.org Tue Mar 23 17:37:10 2004 From: dmintz at davidmintz.org (David Mintz) Date: Tue, 23 Mar 2004 17:37:10 -0500 (EST) Subject: [nycphp-talk] when MySQL "rollback" doesn't In-Reply-To: <20040323221805.GA21727@panix.com> References: <20040323202614.14702.qmail@web14308.mail.yahoo.com> <20040323221805.GA21727@panix.com> Message-ID: On Tue, 23 Mar 2004, Daniel Convissor wrote: > Not to doubt you, but, uh, I guess I will, you're using innodb tables, > right? Okay, you are. So, you've got a bug in your code. Echo out each > query before you execute it. Make sure the scripts/queries are executing > in the order you expect. Then, if that doesn't get you no love, go to the > length of copying/pasting the queries in the same order into a MySQL > command line shell. > Ouch. So that means it *should* work... but I already rewrote this method to do all its own SQL and tested it pretty thoroughly. It passed, so I declared victory and committed it to my little repository. Now I gotta decide whether to roll back (so to speak) to the previous revision and wage more war... I was pretty much echoing the hell out of everything. And yes the tables are InnoDB. I think I'll go get on the subway now so I can get a front row seat at the meeting. (Said he, changing the subject (-: ) Thanks Dan, --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From dmintz at davidmintz.org Tue Mar 23 17:40:54 2004 From: dmintz at davidmintz.org (David Mintz) Date: Tue, 23 Mar 2004 17:40:54 -0500 (EST) Subject: [nycphp-talk] gd on Unix In-Reply-To: References: Message-ID: On Tue, 23 Mar 2004, Rafi Sheikh wrote: > Hi list: > BASICS: > apache 1.3.27, PHP 4.0.6, IBM server > > > How does one enables gd on Unix? > > I do know that on WIN2K-pro one needs to uncomment the extensions for gd in > php.ini...but in Unix I dont see any listings (gd_php.so, etc)...how can I > find it (so I could tell the admin)... any suggestions? > > Here is what I have from the php_info() > Configure Command './configure' '--prefix=/opt/freeware' '--with-apxs' > '--with-mysql' '--with-config-file-path=/etc/opt/freeware/apache' > '--with-ftp' '--with-zlib' '--with-system-regex' '--without-xml' > '--with-ftp' '--with-ssl' I believe you need '--with-gd' in your configure command. (And if I'm wrong I know someone will set the record straight.) HTH, --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From greg at click3x.com Tue Mar 23 17:59:40 2004 From: greg at click3x.com (Greg Faber) Date: Tue, 23 Mar 2004 17:59:40 -0500 Subject: [nycphp-talk] uploading and permissions Message-ID: Hi- sorry to bug y'all with these beginner questions... I made a little uploading site where I can upload various files, works great. Now I want to archive the folders via the same web ui. I can't tar anything because the permissions of the uploaded files are: r-------- (ie: 400) How can I change the permissions (or set them the way I want) on the files as I upload them? thanks, greg ps: have fun in Montreal, it's just LOVELY this time of year ;-) From amiller at criticalmedia.biz Tue Mar 23 20:41:36 2004 From: amiller at criticalmedia.biz (Alan T. Miller) Date: Tue, 23 Mar 2004 17:41:36 -0800 Subject: [nycphp-talk] gd on Unix References: Message-ID: <00e301c41141$25ee7ef0$6e0a0a0a@webdev> Chances are you will also need to have installed libjpeg and libpng for PHP to compile with the '--with-gd' option. And of course you will need to have GD installed on your box as well. I just went through this all last night and had to add those libraries (of course this was compiling php5 on Fedora Linux against apache 1.3.9). PHP4 has a built in GD library does it not... anyone? Alan ----- Original Message ----- From: "David Mintz" To: "NYPHP Talk" Sent: Tuesday, March 23, 2004 2:40 PM Subject: Re: [nycphp-talk] gd on Unix > On Tue, 23 Mar 2004, Rafi Sheikh wrote: > > > Hi list: > > BASICS: > > apache 1.3.27, PHP 4.0.6, IBM server > > > > > > How does one enables gd on Unix? > > > > I do know that on WIN2K-pro one needs to uncomment the extensions for gd in > > php.ini...but in Unix I dont see any listings (gd_php.so, etc)...how can I > > find it (so I could tell the admin)... any suggestions? > > > > Here is what I have from the php_info() > > Configure Command './configure' '--prefix=/opt/freeware' '--with-apxs' > > '--with-mysql' '--with-config-file-path=/etc/opt/freeware/apache' > > '--with-ftp' '--with-zlib' '--with-system-regex' '--without-xml' > > '--with-ftp' '--with-ssl' > > > I believe you need '--with-gd' in your configure command. > > (And if I'm wrong I know someone will set the record straight.) > > HTH, > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From dcech at phpwerx.net Tue Mar 23 20:16:48 2004 From: dcech at phpwerx.net (Dan Cech) Date: Tue, 23 Mar 2004 20:16:48 -0500 Subject: [nycphp-talk] uploading and permissions In-Reply-To: References: Message-ID: <4060E180.8020905@phpwerx.net> The first thing I'd try would be: http://php.net/chmod Dan Greg Faber wrote: > Hi- > > sorry to bug y'all with these beginner questions... > > I made a little uploading site where I can upload various files, works > great. > Now I want to archive the folders via the same web ui. > I can't tar anything because the permissions of the uploaded files are: > r-------- (ie: 400) > How can I change the permissions (or set them the way I want) on the > files as I upload them? > > thanks, > greg > > ps: have fun in Montreal, it's just LOVELY this time of year ;-) From danielc at analysisandsolutions.com Wed Mar 24 00:39:16 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 24 Mar 2004 00:39:16 -0500 Subject: [nycphp-talk] gd on Unix In-Reply-To: <00e301c41141$25ee7ef0$6e0a0a0a@webdev> References: <00e301c41141$25ee7ef0$6e0a0a0a@webdev> Message-ID: <20040324053915.GA14106@panix.com> On Tue, Mar 23, 2004 at 05:41:36PM -0800, Alan T. Miller wrote: > Chances are you will also need to have installed libjpeg and libpng for PHP > to compile with the '--with-gd' option. Yep. And zlib. Here's what it took for me to get a _minimal_ PHP 5 build with GD... ./configure --prefix=/path/to/install \ --with-gd --with-jpeg-dir=/usr/local --with-zlib-dir=/usr/local \ --without-pear --disable-ipv6 --disable-libxml --disable-ctype \ --disable-dom --disable-mbregex --disable-posix --disable-session \ --disable-simplexml --disable-spl --disable-tokenizer --disable-xml \ --disable-libtool-lock --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From faber at linuxnj.com Wed Mar 24 09:24:48 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 09:24:48 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection Message-ID: <20040324142448.GB13593@uranus.faber.nom> I need some extra brains for a design I'm doing. Since it's going to involve XML-RPC and PHP, I figured I'd ask here. I'm putting together a basic shopping cart. I can't use existing solutions because the back end database is called jBASE (a variant of PICK). jBASE lives on the Production Server behind a LinkSys firewall/router. The web site sits on the Web Server and is outside of the firewall. The plan so far is: user submits a request (places an order, wants to see Product ID# 1234, etc.) to the Web Server. The Web Server does some PHP magic and sends the request to the Production Server via XML-RPC. The Production Server does some (PHP?) magic and hands the request to the database via CGI calls. When the Production Server responds, the process is reversed. I don't know how to do the XML-RPC magic above, but tht's part of the fun of the project. What I Can't figure out is how to securely transfer the data between the two servers. I need a secure connection from the Web Server, through the firewall to the Production Server that can't be cracked by script kiddies and the like. I tried setting up a VPN tunnel using FreeS/WAN And Openswan and I can't get them working after a week, so it's time to try something else. The client insists that this be done in real-time, so I can't have a copy of the database on the web server. Any ideas? -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From mitchy at spacemonkeylabs.com Wed Mar 24 10:03:10 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 24 Mar 2004 10:03:10 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324142448.GB13593@uranus.faber.nom> References: <20040324142448.GB13593@uranus.faber.nom> Message-ID: <4061A32E.6050708@spacemonkeylabs.com> Faber Fedor wrote: > The client insists that this be done in real-time, so I can't have a > copy of the database on the web server. > > Any ideas? I am a unix guy, so I don't know how to implement this in the Windows world - keep that in mind. One approach I took in the past was to use ssh and port forwarding (e.g. forwarding port 9876 on the webserver to 80 on the production machine). Then set tcpwrappers to only allow localhost access to port 9876. That way your xml-rpc calls can go to localhost:9876... You are now talking on a ssh-encrypted tunnel to the production machine. Does that fit the bill? -- Mitch From webmaster at localnotion.com Wed Mar 24 10:07:43 2004 From: webmaster at localnotion.com (Matthew Terenzio) Date: Wed, 24 Mar 2004 10:07:43 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324142448.GB13593@uranus.faber.nom> References: <20040324142448.GB13593@uranus.faber.nom> Message-ID: <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> I curious to see what others say, because I've never done this, exactly. It sounds like a typical web service, but I'm not sure why it is needed to be done this way. With proper precaution, can't the web server just interact directly with the database through an SSL? On Mar 24, 2004, at 9:24 AM, Faber Fedor wrote: > I need some extra brains for a design I'm doing. Since it's going to > involve XML-RPC and PHP, I figured I'd ask here. > > I'm putting together a basic shopping cart. I can't use existing > solutions because the back end database is called jBASE (a variant of > PICK). jBASE lives on the Production Server behind a LinkSys > firewall/router. The web site sits on the Web Server and is outside of > the firewall. The plan so far is: user submits a request (places an > order, wants to see Product ID# 1234, etc.) to the Web Server. The Web > Server does some PHP magic and sends the request to the Production > Server via XML-RPC. The Production Server does some (PHP?) magic and > hands > the request to the database via CGI calls. When the Production Server > responds, the process is reversed. > > I don't know how to do the XML-RPC magic above, but tht's part of the > fun of the project. What I Can't figure out is how to securely > transfer > the data between the two servers. I need a secure connection from the > Web Server, through the firewall to the Production Server that can't be > cracked by script kiddies and the like. I tried setting up a VPN tunnel > using FreeS/WAN And Openswan and I can't get them working after a week, > so it's time to try something else. > > The client insists that this be done in real-time, so I can't have a > copy of the database on the web server. > > Any ideas? > > -- > > Regards, > > Faber > > Linux New Jersey: Open Source Solutions for New Jersey > http://www.linuxnj.com > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From mitchy at spacemonkeylabs.com Wed Mar 24 10:12:21 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 24 Mar 2004 10:12:21 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> References: <20040324142448.GB13593@uranus.faber.nom> <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> Message-ID: <4061A555.20402@spacemonkeylabs.com> Matthew Terenzio wrote: > I curious to see what others say, because I've never done this, > exactly. It sounds like a typical web service, but I'm not sure why it > is needed to be done this way. With proper precaution, can't the web > server just interact directly with the database through an SSL? That's the first thing I do with a fresh PostgreSQL installation, at least if the webservers are on separate hardware :) Another alarming phenomenon I have observed is the everything-or-nothing approach, where the whole shebang is either completely in the open, or they encrypt everything - even stuff that is then public on the website... For XML-RPC I've only seen the SSL approach, is there a better practice for stuff like this? -- Mitch From Cbielanski at inta.org Wed Mar 24 10:37:33 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 24 Mar 2004 10:37:33 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection Message-ID: SSL is just the poor-man's VPN for these types of things. Honestly, if SSL had not already proved sufficient in a large number of cases, someone would have spoken up saying "Use XYZ..." The only token of opinion I can offer up beyond that is to build an IPSEC tunnel between a couple of W2K boxes. Seems to me that all that does is use OS-native functionality to build a VPN instead of a hardware-based secure tunnel. ~Chris > -----Original Message----- > From: Mitch Pirtle [mailto:mitchy at spacemonkeylabs.com] > Sent: Wednesday, March 24, 2004 10:12 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Secure (XML-RPC) connection > > > Matthew Terenzio wrote: > > > I curious to see what others say, because I've never done this, > > exactly. It sounds like a typical web service, but I'm not > sure why it > > is needed to be done this way. With proper precaution, > can't the web > > server just interact directly with the database through an SSL? > > That's the first thing I do with a fresh PostgreSQL installation, at > least if the webservers are on separate hardware :) > > Another alarming phenomenon I have observed is the > everything-or-nothing > approach, where the whole shebang is either completely in the > open, or > they encrypt everything - even stuff that is then public on > the website... > > For XML-RPC I've only seen the SSL approach, is there a > better practice > for stuff like this? > > -- Mitch > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From Rafi.Sheikh at Ingenix.com Wed Mar 24 10:40:07 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Wed, 24 Mar 2004 09:40:07 -0600 Subject: [nycphp-talk] enabling gd on Unix Message-ID: Hello folks, thank you for your time and answers. I will drop this thread since the sys admin is vehemently adamant that he will only install from the CD that came with the server (IBM), and it is pre-compiled, and does not have gd enabled, plus PHP is 4.0.6, plus jpgrpah won't work either...b4 I shoot him I better give up- Sigh! Thanks -----Original Message----- From: talk-request at lists.nyphp.org [mailto:talk-request at lists.nyphp.org] Sent: Wednesday, March 24, 2004 9:35 AM To: talk at lists.nyphp.org Subject: talk Digest, Vol 10, Issue 46 Send talk mailing list submissions to talk at lists.nyphp.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.nyphp.org/mailman/listinfo/talk or, via email, send a message with subject or body 'help' to talk-request at lists.nyphp.org You can reach the person managing the list at talk-owner at lists.nyphp.org When replying, please edit your Subject line so it is more specific than "Re: Contents of talk digest..." Today's Topics: 1. gd on Unix (Rafi Sheikh) 2. Re: when MySQL "rollback" doesn't (David Mintz) 3. Re: gd on Unix (David Mintz) 4. uploading and permissions (Greg Faber) 5. Re: gd on Unix (Alan T. Miller) 6. Re: uploading and permissions (Dan Cech) 7. Re: gd on Unix (Daniel Convissor) 8. Secure (XML-RPC) connection (Faber Fedor) 9. Re: Secure (XML-RPC) connection (Mitch Pirtle) 10. Re: Secure (XML-RPC) connection (Matthew Terenzio) 11. Re: Secure (XML-RPC) connection (Mitch Pirtle) 12. RE: Secure (XML-RPC) connection (Chris Bielanski) ---------------------------------------------------------------------- Message: 1 Date: Tue, 23 Mar 2004 16:32:30 -0600 From: Rafi Sheikh Subject: [nycphp-talk] gd on Unix To: "'talk at lists.nyphp.org'" Message-ID: Content-Type: text/plain; charset="iso-8859-1" Hi list: BASICS: apache 1.3.27, PHP 4.0.6, IBM server How does one enables gd on Unix? I do know that on WIN2K-pro one needs to uncomment the extensions for gd in php.ini...but in Unix I dont see any listings (gd_php.so, etc)...how can I find it (so I could tell the admin)... any suggestions? Here is what I have from the php_info() Configure Command './configure' '--prefix=/opt/freeware' '--with-apxs' '--with-mysql' '--with-config-file-path=/etc/opt/freeware/apache' '--with-ftp' '--with-zlib' '--with-system-regex' '--without-xml' '--with-ftp' '--with-ssl' Configuration File (php.ini) Path /etc/opt/freeware/apache/php.ini ***no gd info*** SERVER_SOFTWARE Apache/1.3.27 (Unix) PHP/4.0.6 This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. ------------------------------ Message: 2 Date: Tue, 23 Mar 2004 17:37:10 -0500 (EST) From: David Mintz Subject: Re: [nycphp-talk] when MySQL "rollback" doesn't To: NYPHP Talk Message-ID: Content-Type: TEXT/PLAIN; charset=US-ASCII On Tue, 23 Mar 2004, Daniel Convissor wrote: > Not to doubt you, but, uh, I guess I will, you're using innodb tables, > right? Okay, you are. So, you've got a bug in your code. Echo out each > query before you execute it. Make sure the scripts/queries are executing > in the order you expect. Then, if that doesn't get you no love, go to the > length of copying/pasting the queries in the same order into a MySQL > command line shell. > Ouch. So that means it *should* work... but I already rewrote this method to do all its own SQL and tested it pretty thoroughly. It passed, so I declared victory and committed it to my little repository. Now I gotta decide whether to roll back (so to speak) to the previous revision and wage more war... I was pretty much echoing the hell out of everything. And yes the tables are InnoDB. I think I'll go get on the subway now so I can get a front row seat at the meeting. (Said he, changing the subject (-: ) Thanks Dan, --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 ------------------------------ Message: 3 Date: Tue, 23 Mar 2004 17:40:54 -0500 (EST) From: David Mintz Subject: Re: [nycphp-talk] gd on Unix To: NYPHP Talk Message-ID: Content-Type: TEXT/PLAIN; charset=US-ASCII On Tue, 23 Mar 2004, Rafi Sheikh wrote: > Hi list: > BASICS: > apache 1.3.27, PHP 4.0.6, IBM server > > > How does one enables gd on Unix? > > I do know that on WIN2K-pro one needs to uncomment the extensions for gd in > php.ini...but in Unix I dont see any listings (gd_php.so, etc)...how can I > find it (so I could tell the admin)... any suggestions? > > Here is what I have from the php_info() > Configure Command './configure' '--prefix=/opt/freeware' '--with-apxs' > '--with-mysql' '--with-config-file-path=/etc/opt/freeware/apache' > '--with-ftp' '--with-zlib' '--with-system-regex' '--without-xml' > '--with-ftp' '--with-ssl' I believe you need '--with-gd' in your configure command. (And if I'm wrong I know someone will set the record straight.) HTH, --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 ------------------------------ Message: 4 Date: Tue, 23 Mar 2004 17:59:40 -0500 From: Greg Faber Subject: [nycphp-talk] uploading and permissions To: NYPHP Talk Message-ID: Content-Type: text/plain; charset=US-ASCII; format=flowed Hi- sorry to bug y'all with these beginner questions... I made a little uploading site where I can upload various files, works great. Now I want to archive the folders via the same web ui. I can't tar anything because the permissions of the uploaded files are: r-------- (ie: 400) How can I change the permissions (or set them the way I want) on the files as I upload them? thanks, greg ps: have fun in Montreal, it's just LOVELY this time of year ;-) ------------------------------ Message: 5 Date: Tue, 23 Mar 2004 17:41:36 -0800 From: "Alan T. Miller" Subject: Re: [nycphp-talk] gd on Unix To: "NYPHP Talk" Message-ID: <00e301c41141$25ee7ef0$6e0a0a0a at webdev> Content-Type: text/plain; charset="iso-8859-1" Chances are you will also need to have installed libjpeg and libpng for PHP to compile with the '--with-gd' option. And of course you will need to have GD installed on your box as well. I just went through this all last night and had to add those libraries (of course this was compiling php5 on Fedora Linux against apache 1.3.9). PHP4 has a built in GD library does it not... anyone? Alan ----- Original Message ----- From: "David Mintz" To: "NYPHP Talk" Sent: Tuesday, March 23, 2004 2:40 PM Subject: Re: [nycphp-talk] gd on Unix > On Tue, 23 Mar 2004, Rafi Sheikh wrote: > > > Hi list: > > BASICS: > > apache 1.3.27, PHP 4.0.6, IBM server > > > > > > How does one enables gd on Unix? > > > > I do know that on WIN2K-pro one needs to uncomment the extensions for gd in > > php.ini...but in Unix I dont see any listings (gd_php.so, etc)...how can I > > find it (so I could tell the admin)... any suggestions? > > > > Here is what I have from the php_info() > > Configure Command './configure' '--prefix=/opt/freeware' '--with-apxs' > > '--with-mysql' '--with-config-file-path=/etc/opt/freeware/apache' > > '--with-ftp' '--with-zlib' '--with-system-regex' '--without-xml' > > '--with-ftp' '--with-ssl' > > > I believe you need '--with-gd' in your configure command. > > (And if I'm wrong I know someone will set the record straight.) > > HTH, > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > ------------------------------ Message: 6 Date: Tue, 23 Mar 2004 20:16:48 -0500 From: Dan Cech Subject: Re: [nycphp-talk] uploading and permissions To: NYPHP Talk Message-ID: <4060E180.8020905 at phpwerx.net> Content-Type: text/plain; charset=us-ascii; format=flowed The first thing I'd try would be: http://php.net/chmod Dan Greg Faber wrote: > Hi- > > sorry to bug y'all with these beginner questions... > > I made a little uploading site where I can upload various files, works > great. > Now I want to archive the folders via the same web ui. > I can't tar anything because the permissions of the uploaded files are: > r-------- (ie: 400) > How can I change the permissions (or set them the way I want) on the > files as I upload them? > > thanks, > greg > > ps: have fun in Montreal, it's just LOVELY this time of year ;-) ------------------------------ Message: 7 Date: Wed, 24 Mar 2004 00:39:16 -0500 From: Daniel Convissor Subject: Re: [nycphp-talk] gd on Unix To: NYPHP Talk Message-ID: <20040324053915.GA14106 at panix.com> Content-Type: text/plain; charset=us-ascii On Tue, Mar 23, 2004 at 05:41:36PM -0800, Alan T. Miller wrote: > Chances are you will also need to have installed libjpeg and libpng for PHP > to compile with the '--with-gd' option. Yep. And zlib. Here's what it took for me to get a _minimal_ PHP 5 build with GD... ./configure --prefix=/path/to/install \ --with-gd --with-jpeg-dir=/usr/local --with-zlib-dir=/usr/local \ --without-pear --disable-ipv6 --disable-libxml --disable-ctype \ --disable-dom --disable-mbregex --disable-posix --disable-session \ --disable-simplexml --disable-spl --disable-tokenizer --disable-xml \ --disable-libtool-lock --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 8 Date: Wed, 24 Mar 2004 09:24:48 -0500 From: Faber Fedor Subject: [nycphp-talk] Secure (XML-RPC) connection To: NYPHP Talk Message-ID: <20040324142448.GB13593 at uranus.faber.nom> Content-Type: text/plain; charset=us-ascii I need some extra brains for a design I'm doing. Since it's going to involve XML-RPC and PHP, I figured I'd ask here. I'm putting together a basic shopping cart. I can't use existing solutions because the back end database is called jBASE (a variant of PICK). jBASE lives on the Production Server behind a LinkSys firewall/router. The web site sits on the Web Server and is outside of the firewall. The plan so far is: user submits a request (places an order, wants to see Product ID# 1234, etc.) to the Web Server. The Web Server does some PHP magic and sends the request to the Production Server via XML-RPC. The Production Server does some (PHP?) magic and hands the request to the database via CGI calls. When the Production Server responds, the process is reversed. I don't know how to do the XML-RPC magic above, but tht's part of the fun of the project. What I Can't figure out is how to securely transfer the data between the two servers. I need a secure connection from the Web Server, through the firewall to the Production Server that can't be cracked by script kiddies and the like. I tried setting up a VPN tunnel using FreeS/WAN And Openswan and I can't get them working after a week, so it's time to try something else. The client insists that this be done in real-time, so I can't have a copy of the database on the web server. Any ideas? -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com ------------------------------ Message: 9 Date: Wed, 24 Mar 2004 10:03:10 -0500 From: Mitch Pirtle Subject: Re: [nycphp-talk] Secure (XML-RPC) connection To: NYPHP Talk Message-ID: <4061A32E.6050708 at spacemonkeylabs.com> Content-Type: text/plain; charset=us-ascii; format=flowed Faber Fedor wrote: > The client insists that this be done in real-time, so I can't have a > copy of the database on the web server. > > Any ideas? I am a unix guy, so I don't know how to implement this in the Windows world - keep that in mind. One approach I took in the past was to use ssh and port forwarding (e.g. forwarding port 9876 on the webserver to 80 on the production machine). Then set tcpwrappers to only allow localhost access to port 9876. That way your xml-rpc calls can go to localhost:9876... You are now talking on a ssh-encrypted tunnel to the production machine. Does that fit the bill? -- Mitch ------------------------------ Message: 10 Date: Wed, 24 Mar 2004 10:07:43 -0500 From: Matthew Terenzio Subject: Re: [nycphp-talk] Secure (XML-RPC) connection To: NYPHP Talk Message-ID: <0056401B-7DA5-11D8-A2C6-0003938BDF32 at localnotion.com> Content-Type: text/plain; charset=US-ASCII; format=flowed I curious to see what others say, because I've never done this, exactly. It sounds like a typical web service, but I'm not sure why it is needed to be done this way. With proper precaution, can't the web server just interact directly with the database through an SSL? On Mar 24, 2004, at 9:24 AM, Faber Fedor wrote: > I need some extra brains for a design I'm doing. Since it's going to > involve XML-RPC and PHP, I figured I'd ask here. > > I'm putting together a basic shopping cart. I can't use existing > solutions because the back end database is called jBASE (a variant of > PICK). jBASE lives on the Production Server behind a LinkSys > firewall/router. The web site sits on the Web Server and is outside of > the firewall. The plan so far is: user submits a request (places an > order, wants to see Product ID# 1234, etc.) to the Web Server. The Web > Server does some PHP magic and sends the request to the Production > Server via XML-RPC. The Production Server does some (PHP?) magic and > hands > the request to the database via CGI calls. When the Production Server > responds, the process is reversed. > > I don't know how to do the XML-RPC magic above, but tht's part of the > fun of the project. What I Can't figure out is how to securely > transfer > the data between the two servers. I need a secure connection from the > Web Server, through the firewall to the Production Server that can't be > cracked by script kiddies and the like. I tried setting up a VPN tunnel > using FreeS/WAN And Openswan and I can't get them working after a week, > so it's time to try something else. > > The client insists that this be done in real-time, so I can't have a > copy of the database on the web server. > > Any ideas? > > -- > > Regards, > > Faber > > Linux New Jersey: Open Source Solutions for New Jersey > http://www.linuxnj.com > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 11 Date: Wed, 24 Mar 2004 10:12:21 -0500 From: Mitch Pirtle Subject: Re: [nycphp-talk] Secure (XML-RPC) connection To: NYPHP Talk Message-ID: <4061A555.20402 at spacemonkeylabs.com> Content-Type: text/plain; charset=us-ascii; format=flowed Matthew Terenzio wrote: > I curious to see what others say, because I've never done this, > exactly. It sounds like a typical web service, but I'm not sure why it > is needed to be done this way. With proper precaution, can't the web > server just interact directly with the database through an SSL? That's the first thing I do with a fresh PostgreSQL installation, at least if the webservers are on separate hardware :) Another alarming phenomenon I have observed is the everything-or-nothing approach, where the whole shebang is either completely in the open, or they encrypt everything - even stuff that is then public on the website... For XML-RPC I've only seen the SSL approach, is there a better practice for stuff like this? -- Mitch ------------------------------ Message: 12 Date: Wed, 24 Mar 2004 10:37:33 -0500 From: Chris Bielanski Subject: RE: [nycphp-talk] Secure (XML-RPC) connection To: 'NYPHP Talk' Message-ID: Content-Type: text/plain; charset="iso-8859-1" SSL is just the poor-man's VPN for these types of things. Honestly, if SSL had not already proved sufficient in a large number of cases, someone would have spoken up saying "Use XYZ..." The only token of opinion I can offer up beyond that is to build an IPSEC tunnel between a couple of W2K boxes. Seems to me that all that does is use OS-native functionality to build a VPN instead of a hardware-based secure tunnel. ~Chris > -----Original Message----- > From: Mitch Pirtle [mailto:mitchy at spacemonkeylabs.com] > Sent: Wednesday, March 24, 2004 10:12 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Secure (XML-RPC) connection > > > Matthew Terenzio wrote: > > > I curious to see what others say, because I've never done this, > > exactly. It sounds like a typical web service, but I'm not > sure why it > > is needed to be done this way. With proper precaution, > can't the web > > server just interact directly with the database through an SSL? > > That's the first thing I do with a fresh PostgreSQL installation, at > least if the webservers are on separate hardware :) > > Another alarming phenomenon I have observed is the > everything-or-nothing > approach, where the whole shebang is either completely in the > open, or > they encrypt everything - even stuff that is then public on > the website... > > For XML-RPC I've only seen the SSL approach, is there a > better practice > for stuff like this? > > -- Mitch > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > ------------------------------ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk End of talk Digest, Vol 10, Issue 46 ************************************ This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From faber at linuxnj.com Wed Mar 24 10:43:24 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 10:43:24 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: References: Message-ID: <20040324154324.GA14235@uranus.faber.nom> On Wed, Mar 24, 2004 at 10:37:33AM -0500, Chris Bielanski wrote: > SSL is just the poor-man's VPN for these types of things. Honestly, if SSL > had not already proved sufficient in a large number of cases, someone would > have spoken up saying "Use XYZ..." DOH! I hadn't thought of SSL. That will take care of encrypting the client data, now I need to secure the Production Server from people getting through the firewall. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From faber at linuxnj.com Wed Mar 24 10:48:23 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 10:48:23 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <4061A32E.6050708@spacemonkeylabs.com> References: <20040324142448.GB13593@uranus.faber.nom> <4061A32E.6050708@spacemonkeylabs.com> Message-ID: <20040324154823.GB14235@uranus.faber.nom> On Wed, Mar 24, 2004 at 10:03:10AM -0500, Mitch Pirtle wrote: > Faber Fedor wrote: > > >The client insists that this be done in real-time, so I can't have a > >copy of the database on the web server. > > > >Any ideas? > > I am a unix guy, so I don't know how to implement this in the Windows > world - keep that in mind. What do I care about Windows? I'm a Linux guy and all the servers involved are Linux. :-) > One approach I took in the past was to use ssh and port forwarding (e.g. > forwarding port 9876 on the webserver to 80 on the production machine). > Then set tcpwrappers to only allow localhost access to port 9876. > That way your xml-rpc calls can go to localhost:9876... > > You are now talking on a ssh-encrypted tunnel to the production machine. > > Does that fit the bill? Sounds good, but how does that stop crackers? See, my main concern is that to make this work I have to open a whole in the firewall via port forwarding. Okay, so it's only for port 80, but now that that port is open, the production server is exposed. What's stopping a cracker from emulating the Web Server? Putting tcpwrappers or iptables on the Prodn Server isn't going to work, since all packets will look like they're coming from the firewall (192.168.1.1) and I know of no way to differentiate the packets once they've been NATed. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From faber at linuxnj.com Wed Mar 24 10:50:53 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 10:50:53 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> References: <20040324142448.GB13593@uranus.faber.nom> <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> Message-ID: <20040324155053.GC14235@uranus.faber.nom> On Wed, Mar 24, 2004 at 10:07:43AM -0500, Matthew Terenzio wrote: > I curious to see what others say, because I've never done this, > exactly. It sounds like a typical web service, It is a "typical web service". > but I'm not sure why it is needed to be done this way. Because when it comes to my client's data, I'm an extremely paranoid SOB. :-) > With proper precaution, can't the web server just interact directly > with the database through an SSL? Fine. But how do I stop Cracker Joe from emulating the web server and breaking into the database? -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From adam at trachtenberg.com Wed Mar 24 10:55:28 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Wed, 24 Mar 2004 10:55:28 -0500 (EST) Subject: [nycphp-talk] enabling gd on Unix In-Reply-To: References: Message-ID: On Wed, 24 Mar 2004, Rafi Sheikh wrote: > Hello folks, thank you for your time and answers. I will drop this thread > since the sys admin is vehemently adamant that he will only install from the > CD that came with the server (IBM), and it is pre-compiled, and does not > have gd enabled, plus PHP is 4.0.6, plus jpgrpah won't work either...b4 I > shoot him I better give up- Sigh! 4.0.6 is from June of 2001. It's so ancient, it's pretty much unsuported by everyone. More importantly, it's also missing a variety of security-related patches. See "File Uploads Security Fix" on http://www.php.net/downloads.php. There's a patch for 4.0.6 (and a few others versions of PHP). There's also problem with the --enable-memory-limit configuration option. If your sys admin thinks he's being safe by using the copy of PHP from the CD, he's completely wrong. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From Cbielanski at inta.org Wed Mar 24 10:59:42 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 24 Mar 2004 10:59:42 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection Message-ID: I was going to respond the the first letter but I'll combine here... I wasn't the first to bring up SSL, I just brought up that it seems silly to reinvent a well-worn wheel for the prospect you raise. Hopefully I'm not being patronizing when I ask you not to forget that most firewalls should be able to handle a security protocol such that you can allow SSL in and out only for specific IP addresses, and further constrain the ports on which traffic may pass. SSL runs on 443 and not 80, so that's one problem out of the way. As far as emulating a webserver, there's not much you can do about that. However, if you have your *own* code running at both ends, there's nothing to stop you from using private encryption on the datastream within the SSL tunnel. ~C > -----Original Message----- > From: Faber Fedor [mailto:faber at linuxnj.com] > Sent: Wednesday, March 24, 2004 10:48 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Secure (XML-RPC) connection > > > On Wed, Mar 24, 2004 at 10:03:10AM -0500, Mitch Pirtle wrote: > > Faber Fedor wrote: > > > > >The client insists that this be done in real-time, so I > can't have a > > >copy of the database on the web server. > > > > > >Any ideas? > > > > I am a unix guy, so I don't know how to implement this in > the Windows > > world - keep that in mind. > > What do I care about Windows? I'm a Linux guy and all the servers > involved are Linux. :-) > > > One approach I took in the past was to use ssh and port > forwarding (e.g. > > forwarding port 9876 on the webserver to 80 on the > production machine). > > Then set tcpwrappers to only allow localhost access to port 9876. > > That way your xml-rpc calls can go to localhost:9876... > > > > You are now talking on a ssh-encrypted tunnel to the > production machine. > > > > Does that fit the bill? > > Sounds good, but how does that stop crackers? > > See, my main concern is that to make this work I have to open > a whole in > the firewall via port forwarding. Okay, so it's only for port 80, but > now that that port is open, the production server is exposed. What's > stopping a cracker from emulating the Web Server? Putting > tcpwrappers or > iptables on the Prodn Server isn't going to work, since all > packets will > look like they're coming from the firewall (192.168.1.1) and I know of > no way to differentiate the packets once they've been NATed. > > > -- > > Regards, > > Faber > > Linux New Jersey: Open Source Solutions for New Jersey > http://www.linuxnj.com > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Wed Mar 24 11:06:06 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 24 Mar 2004 11:06:06 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection References: <20040324142448.GB13593@uranus.faber.nom><0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> <20040324155053.GC14235@uranus.faber.nom> Message-ID: <007d01c411b9$f0d37b70$6400a8c0@thinkpad> > Because when it comes to my client's data, I'm an extremely paranoid > SOB. :-) > No one said PKI was easy :-) Im looking for a paper I found in regards to OTP (one-time-password) stuff using rotating public keys that used XML-RPC as an example ... when I find it I will pass along ... I think datapower.com put it out but I really just skimmed it ... - Jon From faber at linuxnj.com Wed Mar 24 11:10:52 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 11:10:52 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: References: Message-ID: <20040324161052.GD14235@uranus.faber.nom> On Wed, Mar 24, 2004 at 10:59:42AM -0500, Chris Bielanski wrote: > I wasn't the first to bring up SSL, I just brought up that it seems silly to > reinvent a well-worn wheel for the prospect you raise. You're right, it does seem silly. One of the reasons I posted the question here is to see where/how I was being silly. :-) > Hopefully I'm not being patronizing when I ask you not to forget that most > firewalls should be able to handle a security protocol such that you can > allow SSL in and out only for specific IP addresses, I do't see that functionality anywhere in the config for the BEFSX41. :-( > and further constrain the ports on which traffic may pass. I can do port forwarding, if that's what you mean. > SSL runs on 443 and not 80, so that's one problem out of the way. 443, 80, it doesn't matter which port is open. What matters is *A* port is open. > As far as emulating a webserver, there's not > much you can do about that. However, if you have your *own* code running at > both ends, there's nothing to stop you from using private encryption on the > datastream within the SSL tunnel. Hmmm, that would take care of web server emulation cracker, then the only way to break in would be to crack the web server emulate the calls from iside the web server box. Better, better... -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From Cbielanski at inta.org Wed Mar 24 11:25:28 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 24 Mar 2004 11:25:28 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection Message-ID: > > ... most firewalls should be able to handle a security protocol such > that you can > > allow SSL in and out only for specific IP addresses, > > I do't see that functionality anywhere in the config for the BEFSX41. > :-( My comment might be a little misleading - what I meant is "allow traffic in and out for specific IP addresses" I figure this might be under IP Filtering, if it's there at all? > > SSL runs on 443 and not 80, so that's one problem out of the way. > > 443, 80, it doesn't matter which port is open. What matters > is *A* port > is open. > True, but then likely so is 53 for DNS, 3306 for MySQL, and probably a few others, despite your precautions. Locking an entire server down to do all its work over a single port may be folly, so consider this carefully - is it a problem you must solve in total, or merely steer clear of? > > As far as emulating a webserver, there's not > > much you can do about that. However, if you have your *own* > code running at > > both ends, there's nothing to stop you from using private > encryption on the > > datastream within the SSL tunnel. > > Hmmm, that would take care of web server emulation cracker, > then the only way to > break in would be to crack the web server emulate the calls from iside > the web server box. Better, better... Actually that's about all you've got left. If someone can get inside your webserver, they've probably already severely compromised the firewall. I'd probably ask someone more in tune with Linux security to chime in on that. So I'm going to restate the standing question: How can you prevent someone from stealing all the chickens once they've made it past the firewall and into the henhouse? ~Chris From faber at linuxnj.com Wed Mar 24 11:34:57 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 11:34:57 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: References: Message-ID: <20040324163457.GA14541@uranus.faber.nom> On Wed, Mar 24, 2004 at 11:25:28AM -0500, Chris Bielanski wrote: > My comment might be a little misleading - what I meant is "allow traffic in > and out for specific IP addresses" I figure this might be under IP > Filtering, if it's there at all? >From what I can tell the "IP Filtering" is for allowing internal machines to go out. I want one that limits IPs coming in. > > 443, 80, it doesn't matter which port is open. What matters > > is *A* port is open. > > True, but then likely so is 53 for DNS, 3306 for MySQL, and probably a few > others, despite your precautions. Not on my networks. :-) The webserver is outside the firewall and has all those ports open. Everything else is behind the firewall and *NOTHING* is open on that firewall. > So I'm going to restate the standing question: > How can you prevent someone from stealing all the chickens once they've made > it past the firewall and into the henhouse? If they get inside the firewall, they've got access to the internal network and all bets are off. That's why I'm trying to keep them from getting through the firewall. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From Cbielanski at inta.org Wed Mar 24 11:46:17 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 24 Mar 2004 11:46:17 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection Message-ID: Cool, sounds like everything is well in hand.. but the below comment reminds me greatly of Largo from Megatokyo ;) (I'm often told I do the same, so we're comrades in this): "F34r my nukl34r f1r3w4ll!!" > -----Original Message----- > From: Faber Fedor [mailto:faber at linuxnj.com] > Sent: Wednesday, March 24, 2004 11:35 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Secure (XML-RPC) connection > Not on my networks. :-) The webserver is outside the firewall and has > all those ports open. Everything else is behind the firewall and > *NOTHING* is open on that firewall. > > Regards, > > Faber > > Linux New Jersey: Open Source Solutions for New Jersey > http://www.linuxnj.com > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Wed Mar 24 13:13:03 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 24 Mar 2004 13:13:03 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324163457.GA14541@uranus.faber.nom> References: <20040324163457.GA14541@uranus.faber.nom> Message-ID: <20040324181303.GA619@panix.com> On Wed, Mar 24, 2004 at 11:34:57AM -0500, Faber Fedor wrote: > On Wed, Mar 24, 2004 at 11:25:28AM -0500, Chris Bielanski wrote: > > > > > 443, 80, it doesn't matter which port is open. What matters > > > is *A* port is open. > > > > True, but then likely so is 53 for DNS, 3306 for MySQL, and probably a few > > others, despite your precautions. > > Not on my networks. :-) The webserver is outside the firewall and has > all those ports open. Everything else is behind the firewall and > *NOTHING* is open on that firewall. If nothing is open, why is it connected to an exterior network at all? And if nothing is open, how do you expect the web server to communicate with the database server? It's like inviting a friend over for lunch but not opening the a door for them when they arrive. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From faber at linuxnj.com Wed Mar 24 13:51:22 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 13:51:22 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324181303.GA619@panix.com> References: <20040324163457.GA14541@uranus.faber.nom> <20040324181303.GA619@panix.com> Message-ID: <20040324185122.GB15367@uranus.faber.nom> On Wed, Mar 24, 2004 at 01:13:03PM -0500, Daniel Convissor wrote: > On Wed, Mar 24, 2004 at 11:34:57AM -0500, Faber Fedor wrote: > > On Wed, Mar 24, 2004 at 11:25:28AM -0500, Chris Bielanski wrote: > > > > > > > 443, 80, it doesn't matter which port is open. What matters > > > > is *A* port is open. > > > > > > True, but then likely so is 53 for DNS, 3306 for MySQL, and probably a few > > > others, despite your precautions. > > > > Not on my networks. :-) The webserver is outside the firewall and has > > all those ports open. Everything else is behind the firewall and > > *NOTHING* is open on that firewall. > > If nothing is open, why is it connected to an exterior network at all? Nothing is open from the outside. All traffice is initiated from the inside. Like this:: Internal network -------firewall------ Big Bad Internet | | Production Server----| |------web server > And if nothing is open, how do you expect the web server to communicate > with the database server? It's like inviting a friend over for lunch but > not opening the a door for them when they arrive. At the moment, it can't. I want to open up a teeny-tiny hole on the firewall to let the web server in, but I'm very paranoid about people breaking in, hence my original question. If I forward Firewall:80 to ProdnServer:80, that will let the web server in and everyone else on the Big Bad Internet. I can use SSH/SSL to encrypt the data from the Web Server to the Production Server but I need to minimize/remove all acapabilities for the Big Bad Internet to get to ProdnServer:80. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From jonbaer at jonbaer.net Wed Mar 24 14:44:36 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 24 Mar 2004 14:44:36 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection References: <20040324163457.GA14541@uranus.faber.nom><20040324181303.GA619@panix.com> <20040324185122.GB15367@uranus.faber.nom> Message-ID: <001201c411d8$708810b0$6400a8c0@thinkpad> > If I forward Firewall:80 to ProdnServer:80, that will let the web server > in and everyone else on the Big Bad Internet. I can use SSH/SSL to > encrypt the data from the Web Server to the Production Server but I need > to minimize/remove all acapabilities for the Big Bad Internet to get to > ProdnServer:80. Have you tested your network with the latest nmap from the outside? Not to say that security by obscurity is 100% (id be fired :-) but tweaking your banners for those fingerprints reduce the risk somewhat (and tweaking ICMP, SYN-ACK stuff). I really dont think you can expect much more when you are connected to the Big Bad Internet. - Jon From Cbielanski at inta.org Wed Mar 24 14:49:43 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Wed, 24 Mar 2004 14:49:43 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection Message-ID: Right along side that is, once you've masked your handshakes a smidgeon, translate them to "non-standard" ports - HTTP on port 1080, SSL on 1443, etc. ~C > -----Original Message----- > From: jon baer [mailto:jonbaer at jonbaer.net] > Sent: Wednesday, March 24, 2004 2:45 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] Secure (XML-RPC) connection > > > > If I forward Firewall:80 to ProdnServer:80, that will let > the web server > > in and everyone else on the Big Bad Internet. I can use SSH/SSL to > > encrypt the data from the Web Server to the Production > Server but I need > > to minimize/remove all acapabilities for the Big Bad > Internet to get to > > ProdnServer:80. > > Have you tested your network with the latest nmap from the > outside? Not to > say that security by obscurity is 100% (id be fired :-) but > tweaking your > banners for those fingerprints reduce the risk somewhat (and > tweaking ICMP, > SYN-ACK stuff). I really dont think you can expect much more > when you are > connected to the Big Bad Internet. > > - Jon > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From mitchy at spacemonkeylabs.com Wed Mar 24 14:52:18 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Wed, 24 Mar 2004 14:52:18 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324185122.GB15367@uranus.faber.nom> References: <20040324163457.GA14541@uranus.faber.nom> <20040324181303.GA619@panix.com> <20040324185122.GB15367@uranus.faber.nom> Message-ID: <4061E6F2.7060400@spacemonkeylabs.com> Faber Fedor wrote: > At the moment, it can't. I want to open up a teeny-tiny hole on the > firewall to let the web server in, but I'm very paranoid about people > breaking in, hence my original question. > > If I forward Firewall:80 to ProdnServer:80, that will let the web server > in and everyone else on the Big Bad Internet. I can use SSH/SSL to > encrypt the data from the Web Server to the Production Server but I need > to minimize/remove all acapabilities for the Big Bad Internet to get to > ProdnServer:80. No can do. If one machine can get through, then anyone that can get to that machine can get through. Whatever security/encryption schemes are implemented on the webserver are bypassed by compromising the webserver. And once gaining access to the production server, the whole shebang is now for the taking. This, ladies and gentlemen, is an example of what I call the "Armadillo Security Model". Hard on the outside, soft on the inside. Firewalls are perhaps less than 30% of your real risk, but the firewall sales pitches have created an entirely inaccurate depiction of the real world. One possible remedy is to push the data from the production server to the webserver, which would protect your internal network at least. Unfortunately, you will not be able to protect the data (should the webserver become compromised); and your data will no longer be 'real time' data. What is more important to your organization: your data, your internal network, or your website? Let the suits make this call, and the rest becomes academic. -- Mitch From faber at linuxnj.com Wed Mar 24 15:36:05 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 15:36:05 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <4061E6F2.7060400@spacemonkeylabs.com> References: <20040324163457.GA14541@uranus.faber.nom> <20040324181303.GA619@panix.com> <20040324185122.GB15367@uranus.faber.nom> <4061E6F2.7060400@spacemonkeylabs.com> Message-ID: <20040324203605.GA15551@uranus.faber.nom> On Wed, Mar 24, 2004 at 02:52:18PM -0500, Mitch Pirtle wrote: > No can do. If one machine can get through, then anyone that can get to > that machine can get through. Whatever security/encryption schemes are > implemented on the webserver are bypassed by compromising the webserver. > And once gaining access to the production server, the whole shebang is > now for the taking. I know. I'm trying to minimize that. > One possible remedy is to push the data from the production server to > the webserver, which would protect your internal network at least. > Unfortunately, you will not be able to protect the data (should the > webserver become compromised); and your data will no longer be 'real > time' data. That architecture is what I've been pushing since Day One. As for placing orders and the like, the Prodn Server would periodically reach out to the Web Server and grab the data. No holes in the firewall and I'm happy. > What is more important to your organization: your data, your internal > network, or your website? Let the suits make this call, and the rest > becomes academic. The suits made their call; I'm trying to minimize the danger. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From faber at linuxnj.com Wed Mar 24 15:37:39 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 15:37:39 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <001201c411d8$708810b0$6400a8c0@thinkpad> References: <20040324185122.GB15367@uranus.faber.nom> <001201c411d8$708810b0$6400a8c0@thinkpad> Message-ID: <20040324203739.GB15551@uranus.faber.nom> On Wed, Mar 24, 2004 at 02:44:36PM -0500, jon baer wrote: > > If I forward Firewall:80 to ProdnServer:80, that will let the web server > > in and everyone else on the Big Bad Internet. I can use SSH/SSL to > > encrypt the data from the Web Server to the Production Server but I need > > to minimize/remove all acapabilities for the Big Bad Internet to get to > > ProdnServer:80. > > Have you tested your network with the latest nmap from the outside? Not the latest nmap, but nmap is one of the things I do after setting up a box/network. nmap says the firewall in question is down. ;-) -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From danielc at analysisandsolutions.com Wed Mar 24 16:46:17 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 24 Mar 2004 16:46:17 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324185122.GB15367@uranus.faber.nom> References: <20040324163457.GA14541@uranus.faber.nom> <20040324181303.GA619@panix.com> <20040324185122.GB15367@uranus.faber.nom> Message-ID: <20040324214617.GA18902@panix.com> On Wed, Mar 24, 2004 at 01:51:22PM -0500, Faber Fedor wrote: > > Nothing is open from the outside. All traffice is initiated from the > inside. Like this:: > > Internal network -------firewall------ Big Bad Internet > | | > Production Server----| |------web server Well, if the production server is never supposed to see traffic from the outside world but needs contacting from inside the company, have a completely separate network. But this isn't what you're asking about. None the less, it can be part of your solution. Are the web server and production server on the same premesis? If so, you can create a real private network between them. Of course, this doesn't let one completely off the hook, since the web server can be compromised and then make attempts to subvert the production server. But it's better than nothing if connectivity is needed between the web and production servers. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From faber at linuxnj.com Wed Mar 24 17:09:49 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 17:09:49 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324214617.GA18902@panix.com> References: <20040324163457.GA14541@uranus.faber.nom> <20040324181303.GA619@panix.com> <20040324185122.GB15367@uranus.faber.nom> <20040324214617.GA18902@panix.com> Message-ID: <20040324220949.GB16517@uranus.faber.nom> On Wed, Mar 24, 2004 at 04:46:17PM -0500, Daniel Convissor wrote: > On Wed, Mar 24, 2004 at 01:51:22PM -0500, Faber Fedor wrote: > > > > Nothing is open from the outside. All traffice is initiated from the > > inside. Like this:: > > > > Internal network -------firewall------ Big Bad Internet > > | | > > Production Server----| |------web server > > Well, if the production server is never supposed to see traffic from the > outside world but needs contacting from inside the company, have a > completely separate network. But this isn't what you're asking about. IOW, a DMZ. > None the less, it can be part of your solution. Are the web server and > production server on the same premesis? If so, you can create a real > private network between them. I've spent a week trying to set up a VPN and I could have done an RPN in an hour! Jeeez.... > Of course, this doesn't let one completely > off the hook, since the web server can be compromised and then make > attempts to subvert the production server. But it's better than nothing > if connectivity is needed between the web and production servers. True. That's one of the reasons I'm against it, but the suits have other ideas. Thanks for all the ideas guys. I have enough ideas and ammo that I can move this project forward. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From webmaster at localnotion.com Wed Mar 24 17:14:04 2004 From: webmaster at localnotion.com (Matthew Terenzio) Date: Wed, 24 Mar 2004 17:14:04 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324155053.GC14235@uranus.faber.nom> References: <20040324142448.GB13593@uranus.faber.nom> <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> <20040324155053.GC14235@uranus.faber.nom> Message-ID: <8F83478A-7DE0-11D8-A2C6-0003938BDF32@localnotion.com> > Fine. But how do I stop Cracker Joe from emulating the web server and > breaking into the database? limit access to the database from the web server IP address for one On Mar 24, 2004, at 10:50 AM, Faber Fedor wrote: > On Wed, Mar 24, 2004 at 10:07:43AM -0500, Matthew Terenzio wrote: >> I curious to see what others say, because I've never done this, >> exactly. It sounds like a typical web service, > > It is a "typical web service". > >> but I'm not sure why it is needed to be done this way. > > Because when it comes to my client's data, I'm an extremely paranoid > SOB. :-) > >> With proper precaution, can't the web server just interact directly >> with the database through an SSL? > > > > > -- > > Regards, > > Faber > > Linux New Jersey: Open Source Solutions for New Jersey > http://www.linuxnj.com > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From faber at linuxnj.com Wed Mar 24 17:47:15 2004 From: faber at linuxnj.com (Faber Fedor) Date: Wed, 24 Mar 2004 17:47:15 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <8F83478A-7DE0-11D8-A2C6-0003938BDF32@localnotion.com> References: <20040324142448.GB13593@uranus.faber.nom> <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> <20040324155053.GC14235@uranus.faber.nom> <8F83478A-7DE0-11D8-A2C6-0003938BDF32@localnotion.com> Message-ID: <20040324224715.GA16809@uranus.faber.nom> On Wed, Mar 24, 2004 at 05:14:04PM -0500, Matthew Terenzio wrote: > >Fine. But how do I stop Cracker Joe from emulating the web server and > >breaking into the database? > > limit access to the database from the web server IP address for one But how? Once the packet have gone through the firewall, the IP Address has been changed. Any packets hitting Prodn:80 are going to be seen coming from 192.168.1.1 whether the original packet is coming from the Web Server or from Cracker Joe. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From webmaster at localnotion.com Wed Mar 24 19:09:31 2004 From: webmaster at localnotion.com (Matthew Terenzio) Date: Wed, 24 Mar 2004 19:09:31 -0500 Subject: [nycphp-talk] Secure (XML-RPC) connection In-Reply-To: <20040324224715.GA16809@uranus.faber.nom> References: <20040324142448.GB13593@uranus.faber.nom> <0056401B-7DA5-11D8-A2C6-0003938BDF32@localnotion.com> <20040324155053.GC14235@uranus.faber.nom> <8F83478A-7DE0-11D8-A2C6-0003938BDF32@localnotion.com> <20040324224715.GA16809@uranus.faber.nom> Message-ID: Well, I wrote that before I read a bunch of followup to the original post, but that sounds more like a proxy to me. Some firewalls just filter based on rules but don't change the original packet. But anyway, that was superceded by a bunch of suggestions by some more knowledgable than me. Good Luck. On Mar 24, 2004, at 5:47 PM, Faber Fedor wrote: > On Wed, Mar 24, 2004 at 05:14:04PM -0500, Matthew Terenzio wrote: >>> Fine. But how do I stop Cracker Joe from emulating the web server >>> and >>> breaking into the database? >> >> limit access to the database from the web server IP address for one > > But how? Once the packet have gone through the firewall, the IP > Address > has been changed. Any packets hitting Prodn:80 are going to be seen > coming from 192.168.1.1 whether the original packet is coming from > the Web Server or from Cracker Joe. > > > -- > > Regards, > > Faber > > Linux New Jersey: Open Source Solutions for New Jersey > http://www.linuxnj.com > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From dmintz at davidmintz.org Thu Mar 25 09:46:13 2004 From: dmintz at davidmintz.org (David Mintz) Date: Thu, 25 Mar 2004 09:46:13 -0500 (EST) Subject: [nycphp-talk] when MySQL "rollback" doesn't In-Reply-To: <20040323221805.GA21727@panix.com> References: <20040323202614.14702.qmail@web14308.mail.yahoo.com> <20040323221805.GA21727@panix.com> Message-ID: I figured out what was going on and thought I'd follow up, if only for the sake of someone else who encounters this down the road and searches the list archives for help. It appears -- according to my experiments -- that if you lock and unlock table X inside a transaction and then try to roll back an update to table X, it will won't roll back. Evidently you need to roll back before you unlock. Perhaps this is obvious to those who are more knowledgeable, but to me it wasn't, and I didn't find any relevant clues from RTFM. books, or google. My several hours of head-banging may have been inefficient, but not completely unproductive (-: On Tue, 23 Mar 2004, Daniel Convissor wrote: > Hi David: > > On Tue, Mar 23, 2004 at 04:04:30PM -0500, David Mintz wrote: > > > classes and objects in PHP4 that I'm running into? I'm working with 4.3.4 > > and Win2K and MySQL 4.0.13-max-nt-log. > ... snip ... > > btw I have run little tests where I do stuff with the same tables, and > > roll it back, but without using these objects/classes, and it works. So it > > isn't something stupid like wrong table type. > > Not to doubt you, but, uh, I guess I will, you're using innodb tables, > right? Okay, you are. So, you've got a bug in your code. Echo out each > query before you execute it. Make sure the scripts/queries are executing > in the order you expect. Then, if that doesn't get you no love, go to the > length of copying/pasting the queries in the same order into a MySQL > command line shell. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From sol2ray at yahoo.fr Fri Mar 26 03:17:35 2004 From: sol2ray at yahoo.fr (=?iso-8859-1?q?Beach=20Sun?=) Date: Fri, 26 Mar 2004 09:17:35 +0100 (CET) Subject: [nycphp-talk] PHP B-tree implementation Message-ID: <20040326081735.56041.qmail@web40210.mail.yahoo.com> Hello everyone! Please check out my PHP B-tree implementation at http://webmaster.eventciti.com/btree/btreehome.php and let me know what you think. Sol Thanks! Yahoo! Mail : votre e-mail personnel et gratuit qui vous suit partout ! Cr?ez votre Yahoo! Mail sur http://fr.benefits.yahoo.com/ Dialoguez en direct avec vos amis gr?ce ? Yahoo! Messenger !T?l?chargez Yahoo! Messenger sur http://fr.messenger.yahoo.com From joel at tagword.com Fri Mar 26 10:27:08 2004 From: joel at tagword.com (Joel De Gan) Date: Fri, 26 Mar 2004 10:27:08 -0500 Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: <20040326081735.56041.qmail@web40210.mail.yahoo.com> References: <20040326081735.56041.qmail@web40210.mail.yahoo.com> Message-ID: <1080314828.4875.56.camel@bezel> Very cool.. very cool indeed... seems to be an error? you may want to limit the ability to "drop" a database for the demo. or have it auto-populate from a test file.. Anyway, I will definitly be making some use of this code. Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site On Fri, 2004-03-26 at 03:17, Beach Sun wrote: > Hello everyone! > Please check out my PHP B-tree implementation at > http://webmaster.eventciti.com/btree/btreehome.php > and let me know what you think. From list at harveyk.com Fri Mar 26 10:56:23 2004 From: list at harveyk.com (harvey) Date: Fri, 26 Mar 2004 10:56:23 -0500 Subject: [nycphp-talk] Querying a DB for Items with Names that Start with a Number Message-ID: <03ee01c4134a$e89e4290$0200a8c0@desktop> hello, i would like to query a database and select only those records where the name field starts with a numeric character. how can i do something like the following? thanks in advance... harvey SELECT * FROM data WHERE is_numeric(name{0}) From danielc at analysisandsolutions.com Fri Mar 26 11:10:18 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Fri, 26 Mar 2004 11:10:18 -0500 Subject: [nycphp-talk] Querying a DB for Items with Names that Start with a Number In-Reply-To: <03ee01c4134a$e89e4290$0200a8c0@desktop> References: <03ee01c4134a$e89e4290$0200a8c0@desktop> Message-ID: <20040326161017.GA13043@panix.com> On Fri, Mar 26, 2004 at 10:56:23AM -0500, harvey wrote: > > SELECT * FROM data WHERE is_numeric(name{0}) Depends on the DBMS you're using. The SQL-99 standard says this is the syntax to use: select * from data where name similar to '[0-9]%'; --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From sol2ray at yahoo.fr Fri Mar 26 11:12:37 2004 From: sol2ray at yahoo.fr (=?iso-8859-1?q?Beach=20Sun?=) Date: Fri, 26 Mar 2004 17:12:37 +0100 (CET) Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: <1080314828.4875.56.camel@bezel> Message-ID: <20040326161237.29943.qmail@web40209.mail.yahoo.com> Dropping any table on the demo page is not an error. I made this page so you can create, edit and drop table as you wish. There the ENGLISH/ARABIC dictionary that implement the PHPBTREE. It contains over 15000 words and you can find any word in no time. I beleive most applications out there don't need the overhead of a database server. --- Joel De Gan a ?crit?: > Very cool.. very cool indeed... > seems to be an error? > you may want to limit the ability to "drop" a > database for the demo. > or have it auto-populate from a test file.. > > Anyway, I will definitly be making some use of this > code. > > Joel De Gan > --------- > http://listbid.com - php freelance > http://broadwords.com - get $10 free advertising for > your site > > On Fri, 2004-03-26 at 03:17, Beach Sun wrote: > > Hello everyone! > > Please check out my PHP B-tree implementation at > > http://webmaster.eventciti.com/btree/btreehome.php > > and let me know what you think. > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk Yahoo! Mail : votre e-mail personnel et gratuit qui vous suit partout ! Cr?ez votre Yahoo! Mail sur http://fr.benefits.yahoo.com/ Dialoguez en direct avec vos amis gr?ce ? Yahoo! Messenger !T?l?chargez Yahoo! Messenger sur http://fr.messenger.yahoo.com From mitchy at spacemonkeylabs.com Fri Mar 26 11:19:13 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 26 Mar 2004 11:19:13 -0500 Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: <20040326161237.29943.qmail@web40209.mail.yahoo.com> References: <20040326161237.29943.qmail@web40209.mail.yahoo.com> Message-ID: <40645801.3050201@spacemonkeylabs.com> Nice, an interesting concept. The only question I have is how to iterate over a list, or the equivalent to 'SELECT * FROM foo'? Did I miss something? Also, any benchmarks run versus RDBMS? Just curious ;^) -- Mitch From Cbielanski at inta.org Fri Mar 26 11:24:20 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 26 Mar 2004 11:24:20 -0500 Subject: [nycphp-talk] PHP B-tree implementation Message-ID: That's Mitchy: give him a tropical island, and he wants the whole planet! Actually, I wanted to chime in and say it was fun and informative to read the part about BTree stuff. I'm still very novice when it comes to database theory. ~Chris > -----Original Message----- > From: Mitch Pirtle [mailto:mitchy at spacemonkeylabs.com] > Sent: Friday, March 26, 2004 11:19 AM > To: NYPHP Talk > Subject: Re: [nycphp-talk] PHP B-tree implementation > > > Nice, an interesting concept. The only question I have is how to > iterate over a list, or the equivalent to 'SELECT * FROM foo'? Did I > miss something? > > Also, any benchmarks run versus RDBMS? Just curious ;^) > > -- Mitch > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From mitchy at spacemonkeylabs.com Fri Mar 26 11:31:08 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 26 Mar 2004 11:31:08 -0500 Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: References: Message-ID: <40645ACC.2000907@spacemonkeylabs.com> Chris Bielanski wrote: >That's Mitchy: give him a tropical island, and he wants the whole planet! > > (scratches head) Where have I heard that before? Come to think of it, give me the Dominican Republic, and I promise to shut up. Really. (innocent face) >Actually, I wanted to chime in and say it was fun and informative to read >the part about BTree stuff. I'm still very novice when it comes to database >theory. > I agree - and am already thinking about ways to use something like this, as it should be very handy for long lists of data... From list at harveyk.com Fri Mar 26 11:52:35 2004 From: list at harveyk.com (harvey) Date: Fri, 26 Mar 2004 11:52:35 -0500 Subject: [nycphp-talk] Re: [front-end] Querying a DB for Items with Names that Start withaNumber References: Message-ID: <04de01c41352$c1972290$0200a8c0@desktop> hi and thanks. i tried the below, but for some reason it didn't work. no errors, but it didn't find any items. i used the following that someone else recommended and it worked fine: SELECT * FROM data WHERE LEFT(NAME, 1) REGEXP "[0-9]"; ----- Original Message ----- From: "Robert Mullaney" To: "NYPHP SIG: Front End" Sent: Friday, March 26, 2004 11:03 AM Subject: RE: [front-end] Querying a DB for Items with Names that Start withaNumber > SELECT * FROM `data` WHERE `name` LIKE '[0-9]%' > > Hope it helps :) > > -----Original Message----- > From: front-end-bounces at lists.nyphp.org > [mailto:front-end-bounces at lists.nyphp.org]On Behalf Of harvey > Sent: Friday, March 26, 2004 10:02 AM > To: NYPHP SIG: Front End > Subject: [front-end] Querying a DB for Items with Names that Start with > aNumber > > > hello, > i would like to query a database and select only those records where the > name field starts with a numeric character. how can i do something like the > following? thanks in advance... > harvey > > SELECT * FROM data WHERE is_numeric(name{0}) > > > _______________________________________________ > front-end mailing list > front-end at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/front-end > > > _______________________________________________ > front-end mailing list > front-end at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/front-end > From sol2ray at yahoo.fr Fri Mar 26 11:55:30 2004 From: sol2ray at yahoo.fr (=?iso-8859-1?q?Beach=20Sun?=) Date: Fri, 26 Mar 2004 17:55:30 +0100 (CET) Subject: [nycphp-talk] PHP B-tree implementation Message-ID: <20040326165530.19747.qmail@web40202.mail.yahoo.com> Being able to drop or edit anything on the demo page is not an error. The purpos of this demo is to let you perform various actions to see how the btree performs. Since this is open source project any input is welcome. The DICTIONARY on the demo page is an implementation of the PHPBTREE. It contains over 15000 words and you can find any word in the tree in almost no time. PHPBTREE could be a better solution for most applications out that don't need the overhead of a database server (query parsing and excution). Very cool.. very cool indeed... seems to be an error? you may want to limit the ability to "drop" a database for the demo. or have it auto-populate from a test file.. Anyway, I will definitly be making some use of this code. Joel De Gan Yahoo! Mail : votre e-mail personnel et gratuit qui vous suit partout ! Cr?ez votre Yahoo! Mail sur http://fr.benefits.yahoo.com/ Dialoguez en direct avec vos amis gr?ce ? Yahoo! Messenger !T?l?chargez Yahoo! Messenger sur http://fr.messenger.yahoo.com From jonbaer at jonbaer.net Fri Mar 26 12:03:31 2004 From: jonbaer at jonbaer.net (jon baer) Date: Fri, 26 Mar 2004 12:03:31 -0500 Subject: [nycphp-talk] PHP B-tree implementation References: <20040326165530.19747.qmail@web40202.mail.yahoo.com> Message-ID: <002001c41354$4447bff0$6400a8c0@thinkpad> > The DICTIONARY on the demo page is an implementation > of the PHPBTREE. It contains over 15000 words and you > can find any word in the tree in almost no time. i may actually use it for my hockey league site ... http://www.brooklynhockey.com ... is there any type of relation that could be setup with other btrees? for example say a value was actually a pointer ... {btree:key} From Cbielanski at inta.org Fri Mar 26 12:09:37 2004 From: Cbielanski at inta.org (Chris Bielanski) Date: Fri, 26 Mar 2004 12:09:37 -0500 Subject: [nycphp-talk] PHP B-tree implementation Message-ID: My mind just screamed "Recursive Loop Hell" the instant I read that... But that was just a gut reaction - the concept could indeed be useful! ~C > -----Original Message----- > From: jon baer [mailto:jonbaer at jonbaer.net] > Sent: Friday, March 26, 2004 12:04 PM > To: NYPHP Talk > Subject: Re: [nycphp-talk] PHP B-tree implementation > > > > The DICTIONARY on the demo page is an implementation > > of the PHPBTREE. It contains over 15000 words and you > > can find any word in the tree in almost no time. > > i may actually use it for my hockey league site ... > http://www.brooklynhockey.com ... is there any type of > relation that could > be setup with other btrees? for example say a value was > actually a pointer > ... {btree:key} > > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jonbaer at jonbaer.net Fri Mar 26 12:20:18 2004 From: jonbaer at jonbaer.net (jon baer) Date: Fri, 26 Mar 2004 12:20:18 -0500 Subject: [nycphp-talk] PHP B-tree implementation References: Message-ID: <005101c41356$9c903c30$6400a8c0@thinkpad> Actually this concept has been done before (albeit not neatly) and you are right about the recursive hell, that is really what the Alicebot project was RECURSIVE HELL srai = symbolic reduction ... A perfect example of code (in PHP) is here: http://www.rydell.com/programe/ In Java the design was called the "Graphmaster" which created btree nodes ... (to be honest in simplicity it was more an XML-based regular expression engine) ... - Jon ----- Original Message ----- From: "Chris Bielanski" To: "'NYPHP Talk'" Sent: Friday, March 26, 2004 12:09 PM Subject: RE: [nycphp-talk] PHP B-tree implementation > My mind just screamed "Recursive Loop Hell" the instant I read that... > > But that was just a gut reaction - the concept could indeed be useful! > From csnyder at chxo.com Fri Mar 26 12:40:00 2004 From: csnyder at chxo.com (Chris Snyder) Date: Fri, 26 Mar 2004 12:40:00 -0500 Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: <002001c41354$4447bff0$6400a8c0@thinkpad> References: <20040326165530.19747.qmail@web40202.mail.yahoo.com> <002001c41354$4447bff0$6400a8c0@thinkpad> Message-ID: <40646AF0.7080108@chxo.com> jon baer wrote: >>The DICTIONARY on the demo page is an implementation >>of the PHPBTREE. It contains over 15000 words and you >>can find any word in the tree in almost no time. >> >> > >is there any type of relation that could >be setup with other btrees? for example say a value was actually a pointer >... {btree:key} > > > Now we're talkin' fun! Pushing the envelope even further, what if the value returned was a serialised PHP array or object, possibly with other {btree:key} values embedded? Monthly meeting attendees are vaguely familiar with airports lookup by city/state/airport-name keys, where a single key may correspond to multiple airports. For example, a lookup on key "los angeles" might return a serialised PHP array with the airport codes of all LA-area airports. Happy Friday, all. From joel at tagword.com Fri Mar 26 12:59:14 2004 From: joel at tagword.com (Joel De Gan) Date: Fri, 26 Mar 2004 12:59:14 -0500 Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: <40646AF0.7080108@chxo.com> References: <20040326165530.19747.qmail@web40202.mail.yahoo.com> <002001c41354$4447bff0$6400a8c0@thinkpad> <40646AF0.7080108@chxo.com> Message-ID: <1080323954.4875.65.camel@bezel> On Fri, 2004-03-26 at 12:40, Chris Snyder wrote: > Monthly meeting attendees are vaguely familiar with airports lookup by > city/state/airport-name keys, where a single key may correspond to > multiple airports. For example, a lookup on key "los angeles" might > return a serialised PHP array with the airport codes of all LA-area > airports. At this moment, I am writing a traffic shaper using mod_rewrite with a little php script that has to figure out if a user has multiple downloads (tick function there) and throttle each download on the fly accordingly, based on a total allowable max speed, and per-day max.. Plus, all current downloads going on and ability to throttle all based on max 'entire server' allowed download speed based on time of day.. array fun fun fun... :) I am considering this btree for keeping a serialized shared mem segment holding current downloads, so it was nice to see that today. > Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site From sol2ray at yahoo.fr Fri Mar 26 12:56:19 2004 From: sol2ray at yahoo.fr (=?iso-8859-1?q?Beach=20Sun?=) Date: Fri, 26 Mar 2004 18:56:19 +0100 (CET) Subject: [nycphp-talk] PHP B-tree implementation In-Reply-To: <40646AF0.7080108@chxo.com> Message-ID: <20040326175619.29832.qmail@web40207.mail.yahoo.com> baer wrote: > > >>The DICTIONARY on the demo page is an > implementation > >>of the PHPBTREE. It contains over 15000 words and > you > >>can find any word in the tree in almost no time. > >> > >> > > > >is there any type of relation that could > >be setup with other btrees? for example say a value > was actually a pointer > >... {btree:key} > > > > > > > Now we're talkin' fun! Pushing the envelope even > further, what if the > value returned was a serialised PHP array or object, > possibly with other > {btree:key} values embedded? > > Monthly meeting attendees are vaguely familiar with > airports lookup by > city/state/airport-name keys, where a single key may > correspond to > multiple airports. For example, a lookup on key > "los angeles" might > return a serialised PHP array with the airport codes > of all LA-area > airports. > > Happy Friday, all. > This is just a starting point. For now you have the responsability to build relationships between tree in your application. It should be noted that PHPBTREE does intend to be a database server. It should be looked at as a data management system, if I can use that term. Sol Yahoo! Mail : votre e-mail personnel et gratuit qui vous suit partout ! Cr?ez votre Yahoo! Mail sur http://fr.benefits.yahoo.com/ Dialoguez en direct avec vos amis gr?ce ? Yahoo! Messenger !T?l?chargez Yahoo! Messenger sur http://fr.messenger.yahoo.com From jlacey at att.net Fri Mar 26 14:23:50 2004 From: jlacey at att.net (John Lacey) Date: Fri, 26 Mar 2004 12:23:50 -0700 Subject: [nycphp-talk] new xampp Message-ID: <40648346.6010204@att.net> fyi, new versions of xampp for linux and windows released: http://www.apachefriends.org/xampp-en.html Linux Version 1.4.3 (Full): Apache 2.0.49, MySQL 4.0.18, PHP 4.3.4 & PEAR + SQLite 2.8.9 + multibyte (mbstring) support, Perl 5.8.0, ProFTPD 1.2.9, phpMyAdmin 2.5.6, OpenSSL 0.9.7d, GD 2.0.1, Freetype2 2.1.0, libjpeg 6b, libpng 1.2.2, gdbm 1.8.0, zlib 1.1.4, expat 1.2, Sablotron 1.0, libxml 2.4.26, Ming 0.2a, Webalizer 2.01, pdf class 009e, ncurses 5.8, mod_perl 1.99_08, FreeTDS 0.60, gettext 0.11.5, IMAP C-Client 2002b, OpenLDAP (client) 2.1.22, mcrypt 2.5.7, mhash 0.8.18, Turck MMCache 2.4.6, cURL 7.10.7 Windows Version 1.4 (Full): Apache 2.0.49, MySQL 4.0.18, PHP 4.3.4 + PEAR, Perl 5.8.3, mod_php 4.3.4, mod_perl 1.99_13, mod_ssl 2.0.49, Openssl 0.9.7d, PHPMyAdmin 2.5.6, Webalizer 2.01-10, Mercury Mail Transport System f?r Win32 und NetWare Systems v3.32, JpGraph 1.14, FileZilla FTP Server 0.8.8, SQLite 2.8.11, ADODB 4.04 (WEB-DAV + MOD AUTH MYSQL experimentally). Only NT systems! From dmintz at davidmintz.org Fri Mar 26 16:56:54 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 26 Mar 2004 16:56:54 -0500 (EST) Subject: [nycphp-talk] Unit testing In-Reply-To: <40648346.6010204@att.net> References: <40648346.6010204@att.net> Message-ID: I'd be curious to learn how much you guys use unit testing with something like PHPUnit. I have played with it, and it is satisfying, but i haven't fully found religion, haven't gone to the X(P)treme of literally writing the test *before* the code the test tests. It surely isn't a panacea and there seem to be cases where a "traditional" test (does this page fetch a row of data and display it? load it in a browser and look at the output) is as good, maybe even more appropriate, than a PHPUnit test. Perhaps... an idea for a presentation and/or Phundies topic? --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From agfische at email.smith.edu Fri Mar 26 16:59:07 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Fri, 26 Mar 2004 16:59:07 -0500 Subject: [nycphp-talk] Unit testing In-Reply-To: References: <40648346.6010204@att.net> Message-ID: Really David, if you want to remove your Phundies and play with your PHPUnit I think that's entirely up to you. -Aaron On Mar 26, 2004, at 4:56 PM, David Mintz wrote: > I'd be curious to learn how much you guys use unit testing with > something > like PHPUnit. I have played with it, and it is satisfying, but i > haven't > fully found religion, haven't gone to the X(P)treme of literally > writing > the test *before* the code the test tests. > > It surely isn't a panacea and there seem to be cases where a > "traditional" > test (does this page fetch a row of data and display it? load it in a > browser and look at the output) is as good, maybe even more > appropriate, > than a PHPUnit test. > > Perhaps... an idea for a presentation and/or Phundies topic? > > --- > David Mintz > http://davidmintz.org/ From dmintz at davidmintz.org Fri Mar 26 17:10:50 2004 From: dmintz at davidmintz.org (David Mintz) Date: Fri, 26 Mar 2004 17:10:50 -0500 (EST) Subject: [nycphp-talk] Unit testing In-Reply-To: References: <40648346.6010204@att.net> Message-ID: > Really David, if you want to remove your Phundies and play with your > PHPUnit I think that's entirely up to you. > > -Aaron Thank you. --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From joel at tagword.com Fri Mar 26 17:20:28 2004 From: joel at tagword.com (Joel De Gan) Date: Fri, 26 Mar 2004 17:20:28 -0500 Subject: [nycphp-talk] Unit testing In-Reply-To: References: <40648346.6010204@att.net> Message-ID: <1080339628.4877.68.camel@bezel> HAHAHAHA.... I love the unit test specification: "non-XP terminology (?), not quite synonymous with ProgrammerTest. A UnitTest measures a unit of software, without specifying why. A ProgrammerTest assists programmers in development, without specifying how." (from: http://c2.com/cgi/wiki?UnitTest) yea, that makes *complete* sense.... don't use it.. On Fri, 2004-03-26 at 16:59, Aaron Fischer wrote: > Really David, if you want to remove your Phundies and play with your > PHPUnit I think that's entirely up to you. > From chubbard at next-online.net Fri Mar 26 20:16:45 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Fri, 26 Mar 2004 17:16:45 -0800 Subject: [nycphp-talk] Unit testing In-Reply-To: Message-ID: David, I do a lot of unit testing. I've used the PEAR unit test package and, well, um. didn't like it much. I am using and really really like the Simple_Test package. If you want I can send samples. Chris On 3/26/04 1:56 PM, "David Mintz" wrote: > > I'd be curious to learn how much you guys use unit testing with something > like PHPUnit. I have played with it, and it is satisfying, but i haven't > fully found religion, haven't gone to the X(P)treme of literally writing > the test *before* the code the test tests. > > It surely isn't a panacea and there seem to be cases where a "traditional" > test (does this page fetch a row of data and display it? load it in a > browser and look at the output) is as good, maybe even more appropriate, > than a PHPUnit test. > > Perhaps... an idea for a presentation and/or Phundies topic? > > --- > David Mintz > http://davidmintz.org/ > > "Anybody else got a problem with Webistics?" -- Sopranos 24:17 > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Fri Mar 26 20:44:48 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Fri, 26 Mar 2004 20:44:48 -0500 Subject: [nycphp-talk] Email header problem Message-ID: <4064DC90.6010708@optonline.net> I'm running into the following problem (this is on a shared server). If I use the standard PHP mail function to send mail, the "From " address says "unprivileged user" because I'm not using a legitimate account that is associated with the domain. However, if I manipulate the mail headers so that it uses an existing email account (specifically noresponse at mydomain.com), additional headers (see below) are added and are dumped into the message body. These headers are added by the ISP. So...just wondering how do I use the headers to specify the "from" address without having these headers dumped into the message body. Jeff ----------------- Reply-To: noresponse at mydomain.com X-Mailer: PHP/4.3.4 Message-Id: Date: Fri, 26 Mar 2004 20:36:55 -0500 X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - isp.com X-AntiAbuse: Original Domain - optonline.net X-AntiAbuse: Originator/Caller UID/GID - [65534 65534] / [26 6] X-AntiAbuse: Sender Address Domain - mydomain.com From mitchy at spacemonkeylabs.com Fri Mar 26 21:13:58 2004 From: mitchy at spacemonkeylabs.com (Mitch Pirtle) Date: Fri, 26 Mar 2004 21:13:58 -0500 Subject: [nycphp-talk] Email header problem In-Reply-To: <4064DC90.6010708@optonline.net> References: <4064DC90.6010708@optonline.net> Message-ID: <4064E366.6040108@spacemonkeylabs.com> Jeff Siegel wrote: > I'm running into the following problem (this is on a shared server). > > If I use the standard PHP mail function to send mail, the "From " > address says "unprivileged user" because I'm not using a legitimate > account that is associated with the domain. I've never managed to get the built-in mail functions to work, but I didn't try too hard because PEAR::Mail was so easy to use. Maybe you could give that a try? -- Mitch From faber at linuxnj.com Fri Mar 26 21:26:37 2004 From: faber at linuxnj.com (Faber Fedor) Date: Fri, 26 Mar 2004 21:26:37 -0500 Subject: [nycphp-talk] Unit testing In-Reply-To: References: Message-ID: <20040327022637.GB1560@uranus.faber.nom> On Fri, Mar 26, 2004 at 05:16:45PM -0800, Chris Hubbard wrote: > David, > I do a lot of unit testing. I've used the PEAR unit test package and, well, > um. didn't like it much. I am using and really really like the Simple_Test > package. I haven't used these yet but I'm going to RSN. Can you compare htme with CPAN's Test, Test::Simple and Test::Harness (which is what I was going to use). BTW, to the fellow who mention that he hasn't gotten Xtreme enough to write tests first before writing code, I suggest you try it. It really does change how you write code and it works very well, IMHO. BTW, "test first, code second" is the *only* thing I've taken from XP, so you know I'm not an XP zealot. :-) > If you want I can send samples. I'd be interested in seeing those. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From leam at reuel.net Sun Mar 28 16:22:52 2004 From: leam at reuel.net (leam) Date: Sun, 28 Mar 2004 16:22:52 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. Message-ID: <4067422C.3040505@reuel.net> I'm using readfile (PHP 4.3.3 on Apache 1.3.29) to read an html formatted text file. In my browser and in the actual file the single and double quotes are fine, viewed remotely from the host they are odd (http://warflute.org) Suggestions? I don't control the hosting computer so any fix has to be in my php. ciao! leam From tgales at tgaconnect.com Sun Mar 28 18:34:28 2004 From: tgales at tgaconnect.com (Tim Gales) Date: Sun, 28 Mar 2004 18:34:28 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <4067422C.3040505@reuel.net> Message-ID: <000f01c4151d$36b8c490$e98d3818@oberon1> Have you tried using " for the quotation marks? T. Gales & Associates 'Helping People Connect with Technology' http://www.tgaconnect.com > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of leam > Sent: Sunday, March 28, 2004 4:23 PM > To: php-talk > Subject: [nycphp-talk] readfile make single and double quotes > odd characters. > > > I'm using readfile (PHP 4.3.3 on Apache 1.3.29) to read an html > formatted text file. In my browser and in the actual file the > single and > double quotes are fine, viewed remotely from the host they are odd > (http://warflute.org) > > Suggestions? I don't control the hosting computer so any fix > has to be > in my php. > > ciao! > > leam > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk > From shiflett at php.net Sun Mar 28 19:00:49 2004 From: shiflett at php.net (Chris Shiflett) Date: Sun, 28 Mar 2004 16:00:49 -0800 (PST) Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <4067422C.3040505@reuel.net> Message-ID: <20040329000049.15054.qmail@web14306.mail.yahoo.com> --- leam wrote: > I'm using readfile (PHP 4.3.3 on Apache 1.3.29) to read an html > formatted text file. In my browser and in the actual file the > single and double quotes are fine, viewed remotely from the host > they are odd (http://warflute.org) I don't quite follow what you're explaining here. What looks fine in your browser, exactly? At first glance, this sounds like Microsoft Word might be involved somehow. It replaces single quotes, double quotes, hyphens, and ellipses with invalid characters. There is a way to disable this in Word, and I seem to recall some software written to substitute the real characters for these invalid ones. I can't seem to find it at the moment, however. I'll look harder if this is in fact your problem. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From leam at reuel.net Sun Mar 28 19:13:07 2004 From: leam at reuel.net (leam) Date: Sun, 28 Mar 2004 19:13:07 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040329000049.15054.qmail@web14306.mail.yahoo.com> References: <20040329000049.15054.qmail@web14306.mail.yahoo.com> Message-ID: <40676A13.8090802@reuel.net> Chris Shiflett wrote: > --- leam wrote: > >>I'm using readfile (PHP 4.3.3 on Apache 1.3.29) to read an html >>formatted text file. In my browser and in the actual file the >>single and double quotes are fine, viewed remotely from the host >>they are odd (http://warflute.org) > > > I don't quite follow what you're explaining here. What looks fine in your > browser, exactly? > > At first glance, this sounds like Microsoft Word might be involved > somehow. It replaces single quotes, double quotes, hyphens, and ellipses > with invalid characters. There is a way to disable this in Word, and I > seem to recall some software written to substitute the real characters for > these invalid ones. I can't seem to find it at the moment, however. I'll > look harder if this is in fact your problem. > > Chris > > ===== > Chris Shiflett - http://shiflett.org/ It was imported by OOo from a probably WP, but in vi(m) it shows as apostrophes and in my borwser on the local webserver it shows fine too. It's just when putting it "out there" that it comes up with the odd characters. Erg, never mind. Not sure but in the transfer from here to there via tar and sftp it got changed. Or something in vim isn't showing here that is there. The file looks right under vi(m) on the machine I'm developing on. After I sftp it up and use vi(m) on the remote machine the odd characters are there. gag. leam From shiflett at php.net Sun Mar 28 19:19:41 2004 From: shiflett at php.net (Chris Shiflett) Date: Sun, 28 Mar 2004 16:19:41 -0800 (PST) Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <4067422C.3040505@reuel.net> Message-ID: <20040329001941.44833.qmail@web14308.mail.yahoo.com> I remembered the software that gets rid of the Microsoft stuff in documents. It's called the demoroniser, and you can find it here: http://www.fourmilab.ch/webtools/demoroniser/ Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From nyphp at enobrev.com Sun Mar 28 19:43:08 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Sun, 28 Mar 2004 19:43:08 -0500 Subject: [nycphp-talk] readfile make single and double quotes oddcharacters. In-Reply-To: <20040329001941.44833.qmail@web14308.mail.yahoo.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Speaking of MS cleanup, here's a good one (free for docs under 20k): http://textism.com/wordcleaner/ -----BEGIN PGP SIGNATURE----- Version: PGP 8.0.3 iQA/AwUBQGdxG0KJsOwQLBJwEQJf5ACfRmDH0qftzdFW/YzdPa35P5cmA2gAnj7b Nga1/rONCHdYdw9HB2YQ8LbB =/5z4 -----END PGP SIGNATURE----- From leam at reuel.net Sun Mar 28 20:16:38 2004 From: leam at reuel.net (leam) Date: Sun, 28 Mar 2004 20:16:38 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040329001941.44833.qmail@web14308.mail.yahoo.com> References: <20040329001941.44833.qmail@web14308.mail.yahoo.com> Message-ID: <406778F6.7080803@reuel.net> Chris Shiflett wrote: > I remembered the software that gets rid of the Microsoft stuff in > documents. It's called the demoroniser, and you can find it here: > > http://www.fourmilab.ch/webtools/demoroniser/ > > Chris It's weirder than that. If I look at the same document on my two local machines they look fine. Even if I sftp one back from the remote host it looks fine. But a vi on the remote host shows the odd character code for the " and ' characters. Can't blame MS on this one, much as I'd like to... ciao! leam From faber at linuxnj.com Sun Mar 28 20:25:51 2004 From: faber at linuxnj.com (Faber Fedor) Date: Sun, 28 Mar 2004 20:25:51 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <406778F6.7080803@reuel.net> References: <20040329001941.44833.qmail@web14308.mail.yahoo.com> <406778F6.7080803@reuel.net> Message-ID: <20040329012551.GA29798@uranus.faber.nom> On Sun, Mar 28, 2004 at 08:16:38PM -0500, leam wrote: > Chris Shiflett wrote: > >I remembered the software that gets rid of the Microsoft stuff in > >documents. It's called the demoroniser, and you can find it here: > > > >http://www.fourmilab.ch/webtools/demoroniser/ > > > >Chris > > It's weirder than that. If I look at the same document on my two local > machines they look fine. Even if I sftp one back from the remote host it > looks fine. But a vi on the remote host shows the odd character code for > the " and ' characters. > > Can't blame MS on this one, much as I'd like to... Could it be the code page/locale that's being used? DO an 'echo $LANG' and see what the settings are. I'll bet one is UTF And the other isn't. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From faber at linuxnj.com Sun Mar 28 20:29:59 2004 From: faber at linuxnj.com (Faber Fedor) Date: Sun, 28 Mar 2004 20:29:59 -0500 Subject: [nycphp-talk] Which XMLRPC server/client do you use? Message-ID: <20040329012959.GB29798@uranus.faber.nom> Well, I'm finally getting on to the next phase of my project, namely setting up a web service between two Apache boxes. In my reading of XMLRPC, I came across the O'Reilly book and the authors made available the client and server code mentioned in their book. It can be found at phpxmlrpc.sourceforge.net. I think I'm going to start with that to get a handle on XMLRPC. I was wondering, for those of you who have already done/are doing web services, what code/package do you use to do the server and client sides in PHP? -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From sol2ray at yahoo.fr Sun Mar 28 22:35:42 2004 From: sol2ray at yahoo.fr (Beach Sun) Date: Sun, 28 Mar 2004 19:35:42 -0800 (PST) Subject: [nycphp-talk] PHPBTREE - php Btree implementation Message-ID: <20040329033542.2183.qmail@web40206.mail.yahoo.com> Hello everyone, some of you have downloaded the PHPBTREE source code since I have anounced it last friday. I have made a *minor change to the code. If you're going to use it, I suggest you get the new code here: http://www.phpbtree.com *The minimum number of records per node was set 2. that was an error. 4 is the correct number. Sol Toure. __________________________________ Do you Yahoo!? Yahoo! Finance Tax Center - File online. File on time. http://taxes.yahoo.com/filing.html From danielc at analysisandsolutions.com Sun Mar 28 23:39:45 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Sun, 28 Mar 2004 23:39:45 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040329000049.15054.qmail@web14306.mail.yahoo.com> References: <4067422C.3040505@reuel.net> <20040329000049.15054.qmail@web14306.mail.yahoo.com> Message-ID: <20040329043945.GB4479@panix.com> On Sun, Mar 28, 2004 at 04:00:49PM -0800, Chris Shiflett wrote: > At first glance, this sounds like Microsoft Word might be involved > somehow. It replaces single quotes, double quotes, hyphens, and ellipses > with invalid characters. I didn't look at the website mentioned in the initial post nor was it clear what the person was talking about, but I too have an inklink thats what they were talking about. If that's the case here, this should prove handy: $Data = preg_replace('/[\x07\x95]/', '-', $Data); $Data = preg_replace('/\x85/', '...', $Data); $Data = preg_replace('/[\x91\x92]/', '\'', $Data); $Data = preg_replace('/[\x93\x94]/', '"', $Data); --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From rich at f1central.net Mon Mar 29 05:41:51 2004 From: rich at f1central.net (Rich Gray) Date: Mon, 29 Mar 2004 12:41:51 +0200 Subject: [nycphp-talk] Which XMLRPC server/client do you use? In-Reply-To: <20040329012959.GB29798@uranus.faber.nom> Message-ID: > I was wondering, for those of you who have already done/are doing web > services, what code/package do you use to do the server and client sides > in PHP? > Hi Faber I have implemented XML-RPC based web services originally using libraries developed by Simon Willison (a Sitepoint contributor IIRC) http://scripts.incutio.com/xmlrpc/ I found the code very easy to implement and customise to suit our purposes... HTH Rich From ez at ericzander.com Mon Mar 29 09:58:35 2004 From: ez at ericzander.com (EZ) Date: Mon, 29 Mar 2004 09:58:35 -0500 Subject: [nycphp-talk] Stupid Question - difference between using single and double quotes Message-ID: <4068399B.7010808@ericzander.com> Hi all, Been a lurker for a month or two and love this list! OK, now that I've buttered you all up... ;-) I have never understood the difference between using single quotes (') and double quotes (") in my code other than for nesting purposes and (I may be getting the name wrong) string literals and when including variables in strings. Can anyone shed light on the proper use of single and double quotes for me? Many thanks! EZ From crisscott at netzero.com Mon Mar 29 10:04:29 2004 From: crisscott at netzero.com (Scott Mattocks) Date: Mon, 29 Mar 2004 10:04:29 -0500 Subject: [nycphp-talk] Stupid Question - difference between using single and double quotes In-Reply-To: <4068399B.7010808@ericzander.com> References: <4068399B.7010808@ericzander.com> Message-ID: <40683AFD.9090602@netzero.com> A string inside of double quotes is always parsed for execution. That means that php will look inside the string and check for any code that can be executed. A string inside of single quotes is never parsed for execution. The string will just be taken literally and code inside of it will not be executed. $stuff = 'things'; echo "I like $stuff"; // output: I like things echo 'I like $stuff'; // output: I like $stuff In general you should use double quotes when you want part of a string to be parsed and executed. You should use single quotes otherwise. Scott Mattocks EZ wrote: > Hi all, > > Been a lurker for a month or two and love this list! > > OK, now that I've buttered you all up... ;-) > > I have never understood the difference between using single quotes (') > and double quotes (") in my code other than for nesting purposes and (I > may be getting the name wrong) string literals and when including > variables in strings. > > Can anyone shed light on the proper use of single and double quotes for me? > > Many thanks! > > EZ > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > From cmerlo at ncc.edu Mon Mar 29 10:06:52 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Mon, 29 Mar 2004 10:06:52 -0500 Subject: [nycphp-talk] Stupid Question - difference between using single and double quotes In-Reply-To: <40683AFD.9090602@netzero.com> References: <4068399B.7010808@ericzander.com> <40683AFD.9090602@netzero.com> Message-ID: <20040329150652.GA7881@ncc.edu> On 2004-03-29 10:04 -0500, Scott Mattocks wrote: > $stuff = 'things'; > echo "I like $stuff"; // output: I like things > echo 'I like $stuff'; // output: I like $stuff > > In general you should use double quotes when you want part of a string > to be parsed and executed. You should use single quotes otherwise. It should be noted also that using the single quotes where appropriate is more efficient; it lets the parser know that there's nothing to evaluate. -c -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo There is not now, and never will be, a language in which it is the least bit difficult to write bad programs. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From shiflett at php.net Mon Mar 29 11:12:56 2004 From: shiflett at php.net (Chris Shiflett) Date: Mon, 29 Mar 2004 08:12:56 -0800 (PST) Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040329043945.GB4479@panix.com> Message-ID: <20040329161256.98094.qmail@web14305.mail.yahoo.com> --- Daniel Convissor wrote: > $Data = preg_replace('/[\x07\x95]/', '-', $Data); > $Data = preg_replace('/\x85/', '...', $Data); > $Data = preg_replace('/[\x91\x92]/', '\'', $Data); > $Data = preg_replace('/[\x93\x94]/', '"', $Data); Very nice, Dan. Do you have this published somewhere? Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From shiflett at php.net Mon Mar 29 11:53:20 2004 From: shiflett at php.net (Chris Shiflett) Date: Mon, 29 Mar 2004 08:53:20 -0800 (PST) Subject: [nycphp-talk] Stupid Question - difference between using single and double quotes In-Reply-To: <20040329150652.GA7881@ncc.edu> Message-ID: <20040329165320.7520.qmail@web14305.mail.yahoo.com> --- "Christopher R. Merlo" wrote: > It should be noted also that using the single quotes where > appropriate is more efficient; it lets the parser know that there's > nothing to evaluate. If you're like me and also concerned with your own efficiency (and supporting your general laziness), there's also the benefit of not having to escape quotes within single quotes or single quotes within quotes: $foo = "This doesn't require escaping."; $bar = '"Cool," said Chris.'; Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From chubbard at next-online.net Mon Mar 29 12:28:27 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Mon, 29 Mar 2004 09:28:27 -0800 Subject: [nycphp-talk] PEAR::DB and Oracle insert error Message-ID: <7D9EDDBA-81A6-11D8-B40F-000A95BAE752@next-online.net> All, I've run into something I'm not sure how to fix. Trying to insert some values into a table in Oracle using PEAR::DB. Here's the error I'm getting: [nativecode=ORA-00911: invalid character] Here's the SQL: INSERT INTO EVENT ( "APPLICATION", "COMPANYNUMBER", "DATELASTMODIFIED", "DATERECORDADDED", "EVENTINFO", "LOGINNAME", "OFFICENUMBER", "OID", "OIDEVENTTYPE", "PAGENAME", "SESSIONID" ) VALUES ( 'AccessPointAP_VERSION', '', TO_DATE ('3/26/2004','MM/DD/YYYY'), TO_DATE ('3/26/2004','MM/DD/YYYY'), 'this is the message', '', '', HEXTORAW ('323037323036363233373632'), HEXTORAW ('EF532CBE3C925A7F3FEC77F3'), '', '' ); Here's the describe on the table: Name Null? Type ----------------------------------------- -------- ---------------------------- APPLICATION VARCHAR2(32) COMPANYNUMBER NUMBER DATELASTMODIFIED NOT NULL DATE DATERECORDADDED NOT NULL DATE EVENTINFO VARCHAR2(255) LOGINNAME VARCHAR2(60) OFFICENUMBER NUMBER OID NOT NULL RAW(12) OIDEVENTTYPE NOT NULL RAW(12) PAGENAME VARCHAR2(48) SESSIONID VARCHAR2(48) And finally here's the code: putenv("ORACLE_HOME=/usr/local/share/oracli"); require_once ("DB.php"); $dsn = "oci8://user:pass at inst"; $this->db = DB::connect($dsn); $sql = "INSERT INTO EVENT ( ... )"; $rs = $this->db->query($sql); Any suggestions? I've tried all kinds of things in the SQL. Obviously missing something important. BTW I don't know from Oracle. Thanks in advance. Chris Hubbard chubbard at next-online.net 425 563 4153 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: text/enriched Size: 3447 bytes Desc: not available URL: From danielc at analysisandsolutions.com Mon Mar 29 15:06:52 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 29 Mar 2004 15:06:52 -0500 Subject: [nycphp-talk] PEAR::DB and Oracle insert error In-Reply-To: <7D9EDDBA-81A6-11D8-B40F-000A95BAE752@next-online.net> References: <7D9EDDBA-81A6-11D8-B40F-000A95BAE752@next-online.net> Message-ID: <20040329200652.GA1650@panix.com> Hi Chris: On Mon, Mar 29, 2004 at 09:28:27AM -0800, Chris Hubbard wrote: > [nativecode=ORA-00911: invalid character] ORA-00911 invalid character Cause: Special characters are valid only in certain places. If special characters other than $, _, and # are used in a name and the name is not enclosed in double quotation marks ("), this message will be issued. One exception to this rule is for database names; in this case, double quotes are stripped out and ignored. Action: Remove the invalid character from the statement or enclose the object name in double quotation marks. Maybe, try getting rid of the quote marks around the field names. I'd also advise not using quoted identifiers in general, they cause more headaches than they solve. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From danielc at analysisandsolutions.com Mon Mar 29 15:16:55 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Mon, 29 Mar 2004 15:16:55 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040329161256.98094.qmail@web14305.mail.yahoo.com> References: <20040329043945.GB4479@panix.com> <20040329161256.98094.qmail@web14305.mail.yahoo.com> Message-ID: <20040329201654.GA3112@panix.com> On Mon, Mar 29, 2004 at 08:12:56AM -0800, Chris Shiflett wrote: > > Very nice, Dan. Do you have this published somewhere? Nay. It's just a doodad I whipped up to deal with one customer's needs to convert "ASCII" text from Word into legit HTML. Most of the items were from personal experience, though the elipsis and apostrophe were just ripped off from http://archive.gingerall.cz/archives/public/sablot2001/msg00960.html --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From phillip.powell at adnet-sys.com Mon Mar 29 16:08:23 2004 From: phillip.powell at adnet-sys.com (Phil Powell) Date: Mon, 29 Mar 2004 16:08:23 -0500 Subject: [nycphp-talk] in_array() to find an object within an array Message-ID: <40689047.2010106@adnet-sys.com> [PHP] if (is_array($_POST["assoc_$key"])) { foreach ($this->getAssocSectionsObjArray($key, $dbAP) as $obj) { print_r($obj); print_r(" in array? "); print_r(in_array($obj, $result)); print_r("

"); if (!in_array($obj, $result)) array_push($result, $obj); } } [/PHP] Here is the output of the result of this script: [Quote] stdClass Object ( [id] => 2 [placement_name] => Placement #1 ) in array? Warning: in_array(): Wrong datatype for first argument in /image_catalog/include/classes.inc.php on line 99 Warning: in_array(): Wrong datatype for first argument in /www/html/mu-spin/image_catalog/include/classes.inc.php on line 100 stdClass Object ( [id] => 4 [placement_name] => Placement #10 ) in array? Warning: in_array(): Wrong datatype for first argument in /image_catalog/include/classes.inc.php on line 99 Warning: in_array(): Wrong datatype for first argument in /www/html/mu-spin/image_catalog/include/classes.inc.php on line 100 stdClass Object ( [id] => 6 [placement_name] => [url]http://blah.com[/url] ) in array? Warning: in_array(): Wrong datatype for first argument in /image_catalog/include/classes.inc.php on line 99 Warning: in_array(): Wrong datatype for first argument in /image_catalog/include/classes.inc.php on line 100 [/Quote] What I have to do is compare an array of objects, $result, with another array of objects, $this->getAssocSectionsObjArray($key, $dbAP). Both arrays will be identical in structure and object formatting, but not in object data content. What I need to do is to find out if that one array has the very same object as the other, then don't add it to $result, otherwise, add to $result. The object formatting is as follows: [Quote]obj: stdClass Object ( [id] => 2 [placement_name] => Placement #1 )[/Quote] And $result can look like this: [Quote] result: Array ( [0] => stdClass Object ( [id] => 6 [placement_name] => Placement #27 ) [1] => stdClass Object ( [id] => 2 [placement_name] => Placement #1 ) ) [/Quote] I don't wish to loop through both arrays, that would be a performance nightmare to do that. Is there a version of in_array in existence for comparing objects? Thanx Phil PS: I went to this manual example at [url]http://us3.php.net/manual/en/function.in-array.php#40079[/url] but that involves recursive handling and object rebuilding - this, were I to figure out what the living blue it is, would have to be put inside another loop.. OUCH! -- Phil Powell Web Developer ADNET Systems, Inc. 11260 Roger Bacon Drive, Suite 403 Reston, VA 20190-5203 Phone: (703) 709-7218 x107 Cell: (571) 437-4430 FAX: (703) 709-7219 EMail: Phillip.Powell at adnet-sys.com AOL IM: SOA Dude From southwell at dneba.com Mon Mar 29 16:19:20 2004 From: southwell at dneba.com (Michael Southwell) Date: Mon, 29 Mar 2004 16:19:20 -0500 Subject: [nycphp-talk] Stupid Question - difference between using single and double quotes In-Reply-To: <20040329165320.7520.qmail@web14305.mail.yahoo.com> References: <20040329150652.GA7881@ncc.edu> <20040329165320.7520.qmail@web14305.mail.yahoo.com> Message-ID: <6.0.3.0.2.20040329161120.01e5bea8@mail.optonline.net> At 11:53 AM 3/29/2004, you wrote: >If you're like me and also concerned with your own efficiency (and >supporting your general laziness), there's also the benefit of not having >to escape quotes within single quotes or single quotes within quotes: > >$foo = "This doesn't require escaping."; >$bar = '"Cool," said Chris.'; One disadvantage, however, is that these single and double quotation marks display as typewriter style (that is, straight). If you want typeset style (that is, curved, as in a book) single and double quotation marks, you need to do something like this: $foo = "This doesn’t require escaping."; $bar = '“Cool,” said Chris.'; This, however, is further dependent on font and (I believe) font size; sometimes there is no apparent difference between the typewriter and typeset styles as displayed. An example of this is on the various PHundamentals articles, where I am in the habit of using the typeset ones and Jeff Siegel is in the habit of using either the keyboard symbols or "--but they all look the same. But now we are getting really OT and onto aesthetics. Michael G. Southwell ================================= DNEBA Enterprises 81 South Road Bloomingdale, NJ 07403-1419 973/492-7873 (voice and fax) southwell at dneba.com http://www.dneba.com ====================================================== From greg at click3x.com Mon Mar 29 16:38:29 2004 From: greg at click3x.com (Greg Faber) Date: Mon, 29 Mar 2004 16:38:29 -0500 Subject: [nycphp-talk] Uploading animated gifs Message-ID: <6B08E780-81C9-11D8-8B69-000502F1DDFC@click3x.com> Is there something special that needs to be done in order to upload animated GIFs to a webserver via a post-form? The reason I am asking this is that I designed a small "content-management system" (ie: extranet) where users can post photos, movie-clips and documents. Everything uploads fine except for when I upload an animated gif file. For example, when I upload a 20 KB animated gif, the file in the uploads directory is 4KB and doesn't display as what it should be. It won't even open in Preview or Photoshop or ImageReady . I CAN open it in a web browser and it's some illegible graphic that says something like "Error Loading /Library/WebServer" but I'm not sure (I've attached the graphic). If any of you have any idea what the heck is going on, please enlighten me, I really don't get it. -------------- next part -------------- A non-text attachment was scrubbed... Name: Blueoneani.gif Type: image/gif Size: 468 bytes Desc: not available URL: -------------- next part -------------- Thank you. Greg From southwell at dneba.com Mon Mar 29 16:50:21 2004 From: southwell at dneba.com (Michael Southwell) Date: Mon, 29 Mar 2004 16:50:21 -0500 Subject: [nycphp-talk] Uploading animated gifs In-Reply-To: <6B08E780-81C9-11D8-8B69-000502F1DDFC@click3x.com> References: <6B08E780-81C9-11D8-8B69-000502F1DDFC@click3x.com> Message-ID: <6.0.3.0.2.20040329164911.01e5c118@mail.optonline.net> At 04:38 PM 3/29/2004, you wrote: >Is there something special that needs to be done in order to upload >animated GIFs to a webserver via a post-form? > >The reason I am asking this is that I designed a small "content-management >system" (ie: extranet) where users can post photos, movie-clips and >documents. Everything uploads fine except for when I upload an animated >gif file. For example, when I upload a 20 KB animated gif, the file in the >uploads directory is 4KB and doesn't display as what it should be. It >won't even open in Preview or Photoshop or ImageReady . I CAN open it in a >web browser and it's some illegible graphic that says something like >"Error Loading /Library/WebServer" but I'm not sure (I've attached the >graphic). is the path to the desired gif correct? This looks like an error message transformed into an image. Michael G. Southwell ================================= DNEBA Enterprises 81 South Road Bloomingdale, NJ 07403-1419 973/492-7873 (voice and fax) southwell at dneba.com http://www.dneba.com ====================================================== From leam at reuel.net Mon Mar 29 17:19:11 2004 From: leam at reuel.net (leam) Date: Mon, 29 Mar 2004 17:19:11 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040329012551.GA29798@uranus.faber.nom> References: <20040329001941.44833.qmail@web14308.mail.yahoo.com> <406778F6.7080803@reuel.net> <20040329012551.GA29798@uranus.faber.nom> Message-ID: <4068A0DF.1000001@reuel.net> Faber Fedor wrote: > On Sun, Mar 28, 2004 at 08:16:38PM -0500, leam wrote: > >>Chris Shiflett wrote: >> >>>I remembered the software that gets rid of the Microsoft stuff in >>>documents. It's called the demoroniser, and you can find it here: >>> >>>http://www.fourmilab.ch/webtools/demoroniser/ >>> >>>Chris >> >>It's weirder than that. If I look at the same document on my two local >>machines they look fine. Even if I sftp one back from the remote host it >>looks fine. But a vi on the remote host shows the odd character code for >>the " and ' characters. >> >>Can't blame MS on this one, much as I'd like to... > > > Could it be the code page/locale that's being used? DO an 'echo $LANG' > and see what the settings are. I'll bet one is UTF And the other isn't. > > I'd have to say you're right. Both local boxes are en_US.UTF-8 and the remote is blank. Can I fix it as a user or do I need to talk to the hosting people? ciao! leam From jmusil at villagevoice.com Mon Mar 29 17:38:33 2004 From: jmusil at villagevoice.com (Jim Musil) Date: Mon, 29 Mar 2004 17:38:33 -0500 Subject: [nycphp-talk] Robot Sessions Message-ID: Is there a (good) way to allow robots to navigate your site, but not issue them a session? -- James Musil Director of Information Systems Village Voice 36 Cooper Square New York, NY 10003 (212) 475-2351 JMusil at villagevoice.com From sklar at sklar.com Mon Mar 29 17:41:08 2004 From: sklar at sklar.com (David Sklar) Date: Mon, 29 Mar 2004 17:41:08 -0500 Subject: [nycphp-talk] Robot Sessions In-Reply-To: References: Message-ID: <4068A604.4060509@sklar.com> > Is there a (good) way to allow robots to navigate your site, but not > issue them a session? Short but not the world's most efficient way to do it: if (! preg_match('/googlebot/i', $_SERVER['HTTP_USER_AGENT'])) { session_start(); } You probably want to expand that regex to account for all the robots you know/care about. David From greg at click3x.com Mon Mar 29 17:43:21 2004 From: greg at click3x.com (Greg Faber) Date: Mon, 29 Mar 2004 17:43:21 -0500 Subject: [nycphp-talk] Uploading animated gifs In-Reply-To: <6.0.3.0.2.20040329164911.01e5c118@mail.optonline.net> References: <6B08E780-81C9-11D8-8B69-000502F1DDFC@click3x.com> <6.0.3.0.2.20040329164911.01e5c118@mail.optonline.net> Message-ID: <7B47BBBC-81D2-11D8-8B69-000502F1DDFC@click3x.com> I did some experimenting and I think it might be the result of a resizing function I am using because if I upload the files without resizing them, they get served OK. I think I found the source of my anguish. On Mar 29, 2004, at 4:50 PM, Michael Southwell wrote: > At 04:38 PM 3/29/2004, you wrote: >> Is there something special that needs to be done in order to upload >> animated GIFs to a webserver via a post-form? >> >> The reason I am asking this is that I designed a small >> "content-management system" (ie: extranet) where users can post >> photos, movie-clips and documents. Everything uploads fine except for >> when I upload an animated gif file. For example, when I upload a 20 >> KB animated gif, the file in the uploads directory is 4KB and doesn't >> display as what it should be. It won't even open in Preview or >> Photoshop or ImageReady . I CAN open it in a web browser and it's >> some illegible graphic that says something like "Error Loading >> /Library/WebServer" but I'm not sure (I've attached the graphic). > > is the path to the desired gif correct? This looks like an error > message transformed into an image. > > > Michael G. Southwell ================================= > DNEBA Enterprises > 81 South Road > Bloomingdale, NJ 07403-1419 > 973/492-7873 (voice and fax) > southwell at dneba.com > http://www.dneba.com > ====================================================== > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From shiflett at php.net Mon Mar 29 17:47:32 2004 From: shiflett at php.net (Chris Shiflett) Date: Mon, 29 Mar 2004 14:47:32 -0800 (PST) Subject: [nycphp-talk] Robot Sessions In-Reply-To: Message-ID: <20040329224732.10412.qmail@web14307.mail.yahoo.com> --- Jim Musil wrote: > Is there a (good) way to allow robots to navigate your site, but > not issue them a session? Nope, because a robot doesn't have to let you know that it's a robot. However, you can identify the major ones, because they pass a consistent User-Agent identifying themselves. Here are some agents from my access logs that look like robots to me (some are truncated): Googlebot/2.1 (+http://www.googlebot.com/bot.html) FeedDemon/1.10 RC 1 (http://www.bradsoft.com/; Microsoft Wind PhpDig/1.8.0 (+http://www.phpdig.net/robot.php) FeedDemon/1.0 (http://www.bradsoft.com/; Microsoft Windows XP NetNewsWire/1.0.5 (Mac OS X; Lite; http://ranchero.com/netnew Bloglines/2.0 (http://www.bloglines.com; 6 subscribers) msnbot/0.11 (+http://search.msn.com/msnbot.htm) FOSS (Free and Open Source) Planet Planet/0.2 http://www.plan QuepasaCreep ( crawler at quepasacorp.com ) NewsGator/2.0 (http://www.newsgator.com; Microsoft Windows NT Radio UserLand/8.0.8 (MacOS) FAST-WebCrawler/3.8 (crawler at trd dot overture dot com; htt ia_archiver Straw/0.22.1 n4p_bot crawler at n4p.com WebSauger 1.20b http://www.almaden.ibm.com/cs/crawler [c01] FeedOnFeeds/0.1 (+http://minutillo.com/steve/feedonfeeds/) ES.NET_Crawler/2.0 (http://search.innerprise.net/) http://www.almaden.ibm.com/cs/crawler [wf85] NutchCVS/0.03-dev (Nutch; http://www.nutch.org/docs/en/bot.ht WebReaper [info at webreaper.net] OK, there are more than I thought, so I'll stop there. :-) Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From chubbard at next-online.net Mon Mar 29 18:34:53 2004 From: chubbard at next-online.net (Chris Hubbard) Date: Mon, 29 Mar 2004 15:34:53 -0800 Subject: [nycphp-talk] PEAR::DB and Oracle insert error In-Reply-To: <20040329200652.GA1650@panix.com> References: <7D9EDDBA-81A6-11D8-B40F-000A95BAE752@next-online.net> <20040329200652.GA1650@panix.com> Message-ID: <4068B29D.2040500@next-online.net> Well, it turns out if you have semi colon at the end of your sql then you get the ORA-00911 error. So: INSERT INTO TABLENAME ("field", "field") VALUES ('one', 'two'); will result in an error, PEAR::DB returns "unknown error". while: INSERT INTO TABLENAME ("field", "field") VALUES ('one', 'two') [note............................................................................................................^] will work just fine. Please note that the Oracle error: ORA-00911 doesn't say anything about semicolons. Which is another reason why Oracle is better than MySQL. Somebody shoot me now. Chris Daniel Convissor wrote: >Hi Chris: > >On Mon, Mar 29, 2004 at 09:28:27AM -0800, Chris Hubbard wrote: > > > >>[nativecode=ORA-00911: invalid character] >> >> > > ORA-00911 invalid character > > Cause: Special characters are valid only in certain places. If > special characters other than $, _, and # are used in a name and > the name is not enclosed in double quotation marks ("), this > message will be issued. One exception to this rule is for database > names; in this case, double quotes are stripped out and ignored. > > Action: Remove the invalid character from the statement or enclose > the object name in double quotation marks. > > >Maybe, try getting rid of the quote marks around the field names. I'd >also advise not using quoted identifiers in general, they cause more >headaches than they solve. > >--Dan > > > -- Chris Hubbard Sr Software Developer Next Online 425 563 4153 From faber at linuxnj.com Mon Mar 29 20:46:41 2004 From: faber at linuxnj.com (Faber Fedor) Date: Mon, 29 Mar 2004 20:46:41 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <4068A0DF.1000001@reuel.net> References: <20040329001941.44833.qmail@web14308.mail.yahoo.com> <406778F6.7080803@reuel.net> <20040329012551.GA29798@uranus.faber.nom> <4068A0DF.1000001@reuel.net> Message-ID: <20040330014641.GC13702@uranus.faber.nom> On Mon, Mar 29, 2004 at 05:19:11PM -0500, leam wrote: > Faber Fedor wrote: > >On Sun, Mar 28, 2004 at 08:16:38PM -0500, leam wrote: > >>It's weirder than that. If I look at the same document on my two local > >>machines they look fine. Even if I sftp one back from the remote host it > >>looks fine. But a vi on the remote host shows the odd character code for > >>the " and ' characters. > > > >Could it be the code page/locale that's being used? DO an 'echo $LANG' > >and see what the settings are. I'll bet one is UTF And the other isn't. > > I'd have to say you're right. Both local boxes are en_US.UTF-8 and the > remote is blank. Can I fix it as a user or do I need to talk to the > hosting people? You'll have to talk to the hosting people or change it on your system. Oh, and just changing the LANG var won't work, it has to be changed in the configuration files and the box rebooted. Assuming both boxen are Red Hat, RH did something very low-level that screws things up. There was a long discussion of this over at the linuxgazette.net. We never figured out what they did, but it affects perl (can I mention that language in here? :-) output as well. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From nyphp at enobrev.com Mon Mar 29 21:08:29 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Mon, 29 Mar 2004 21:08:29 -0500 Subject: [nycphp-talk] Robot Sessions In-Reply-To: <4068A604.4060509@sklar.com> Message-ID: > > Is there a (good) way to allow robots to navigate your > site, but not > > issue them a session? > > Short but not the world's most efficient way to do it: > > if (! preg_match('/googlebot/i', $_SERVER['HTTP_USER_AGENT'])) { > session_start(); > } > Using a similar method, I'd once created for a client an include that would come in above all other code. Basically it would check the user_agent for the majority of the robots I could figure out (via the logs - Mr. Shiflett just gave a good list to start with) and if the current user agent wats one, it would essentaily spit out a huge list of links to every product throughout the site with the title of the product as the text of the link. And then it would exit(). Within 3 weeks the entire site was indexed (some within a couple days). You could also put this conditional include at the bottom of your scripts which would essentially give the search engines an automated and immediate sitemap, of course then that site map will be cached with the pages. Not sure if it would still work for all the engines, but it did the job mid last year. Mark From leam at reuel.net Mon Mar 29 21:18:21 2004 From: leam at reuel.net (leam) Date: Mon, 29 Mar 2004 21:18:21 -0500 Subject: [nycphp-talk] readfile make single and double quotes odd characters. In-Reply-To: <20040330014641.GC13702@uranus.faber.nom> References: <20040329001941.44833.qmail@web14308.mail.yahoo.com> <406778F6.7080803@reuel.net> <20040329012551.GA29798@uranus.faber.nom> <4068A0DF.1000001@reuel.net> <20040330014641.GC13702@uranus.faber.nom> Message-ID: <4068D8ED.5070102@reuel.net> Faber Fedor wrote: > On Mon, Mar 29, 2004 at 05:19:11PM -0500, leam wrote: >>>Could it be the code page/locale that's being used? DO an 'echo $LANG' >>>and see what the settings are. I'll bet one is UTF And the other isn't. >> >>I'd have to say you're right. Both local boxes are en_US.UTF-8 and the >>remote is blank. Can I fix it as a user or do I need to talk to the >>hosting people? > > > You'll have to talk to the hosting people or change it on your system. > Oh, and just changing the LANG var won't work, it has to be changed in > the configuration files and the box rebooted. Assuming both boxen are > Red Hat, RH did something very low-level that screws things up. There > was a long discussion of this over at the linuxgazette.net. We never > figured out what they did, but it affects perl (can I mention that > language in here? :-) output as well. > /etc/sysconfig/i18n ciao! leam From csnyder at chxo.com Mon Mar 29 21:25:39 2004 From: csnyder at chxo.com (Chris Snyder) Date: Mon, 29 Mar 2004 21:25:39 -0500 Subject: [nycphp-talk] Robot Sessions In-Reply-To: References: Message-ID: <4068DAA3.5030106@chxo.com> Mark Armendariz wrote: > Basically it would check the user_agent for > >the majority of the robots I could figure out (via the logs - Mr. Shiflett >just gave a good list to start with) > One might also check http://www.robotstxt.org/wc/active.html for a big list of known bots. From adam at trachtenberg.com Mon Mar 29 21:47:33 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Mon, 29 Mar 2004 21:47:33 -0500 (EST) Subject: [nycphp-talk] Robot Sessions In-Reply-To: <20040329224732.10412.qmail@web14307.mail.yahoo.com> References: <20040329224732.10412.qmail@web14307.mail.yahoo.com> Message-ID: On Mon, 29 Mar 2004, Chris Shiflett wrote: > However, you can identify the major ones, because they pass a consistent > User-Agent identifying themselves. Here are some agents from my access > logs that look like robots to me (some are truncated): > > FeedDemon/1.10 RC 1 (http://www.bradsoft.com/; Microsoft Wind > FeedDemon/1.0 (http://www.bradsoft.com/; Microsoft Windows XP > NetNewsWire/1.0.5 (Mac OS X; Lite; http://ranchero.com/netnew > Bloglines/2.0 (http://www.bloglines.com; 6 subscribers) > FOSS (Free and Open Source) Planet Planet/0.2 http://www.plan > NewsGator/2.0 (http://www.newsgator.com; Microsoft Windows NT > Radio UserLand/8.0.8 (MacOS) > FeedOnFeeds/0.1 (+http://minutillo.com/steve/feedonfeeds/) FWIW, these ones are actually RSS aggregators instead of spiders. They're still robots, but they probably won't crawl your site, if that's what you care about w/r/t sessions. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From faber at linuxnj.com Tue Mar 30 00:45:56 2004 From: faber at linuxnj.com (Faber Fedor) Date: Tue, 30 Mar 2004 00:45:56 -0500 Subject: [nycphp-talk] Which XMLRPC server/client do you use? In-Reply-To: References: <20040329012959.GB29798@uranus.faber.nom> Message-ID: <20040330054556.GA16449@uranus.faber.nom> On Mon, Mar 29, 2004 at 12:41:51PM +0200, Rich Gray wrote: > > I was wondering, for those of you who have already done/are doing web > > services, what code/package do you use to do the server and client sides > > in PHP? > > I have implemented XML-RPC based web services originally using libraries > developed by Simon Willison (a Sitepoint contributor IIRC) > http://scripts.incutio.com/xmlrpc/ I found the code very easy to implement > and customise to suit our purposes... Thanks, I'll give that a shot. The XML-RPC from the O'Reilly book is now working, but I'm a bit bothered that there isn't any traffic in the orums for over two years and that other people had questions like I did and never got answers. I'd like to find something with a bit more support. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From faber at linuxnj.com Tue Mar 30 00:51:13 2004 From: faber at linuxnj.com (Faber Fedor) Date: Tue, 30 Mar 2004 00:51:13 -0500 Subject: [nycphp-talk] Where do name spaces come from? Message-ID: <20040330055113.GB16449@uranus.faber.nom> While working on my XML-RPC project, I keep coming across code like this: $disp_map = array( "server.helloWorld" => "server.echoback" => ); What's confusing me is the "server." notation. I haven't seen a guide on where that comes from (why "server" in this example and not "foo"?). Is it the file name? If so, why did changing the file name to "my_server.php" and renaming the name space appropriately not work? Is it some sort of internally defined name (although I couldn't find it in the file)? I looked up "name space" on php.net and found stuff about DOM which is not applicable here, I beleive. -- Regards, Faber Linux New Jersey: Open Source Solutions for New Jersey http://www.linuxnj.com From adam at trachtenberg.com Tue Mar 30 01:17:10 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 30 Mar 2004 01:17:10 -0500 (EST) Subject: [nycphp-talk] Where do name spaces come from? In-Reply-To: <20040330055113.GB16449@uranus.faber.nom> References: <20040330055113.GB16449@uranus.faber.nom> Message-ID: On Tue, 30 Mar 2004, Faber Fedor wrote: > What's confusing me is the "server." notation. I haven't seen a guide > on where that comes from (why "server" in this example and not "foo"?). XML-RPC was written by Dave Winer. Dave also wrote a system called Frontier. Frontier used the "." as a namespace / path separator. (Frontier is a weird hybrid scripting language / object database system that's now been extended to include a web server and more. It's hard to explain if you've never seen it.) So, what in PHP is mysql_query() would be mysql.query() in Frontier. >From this background I conclude that when Dave wrote up the original XML-RPC examples, he just used Frontier notation and everybody else copied it blindly. > Is it the file name? If so, why did changing the file name to > "my_server.php" and renaming the name space appropriately not work? Is > it some sort of internally defined name (although I couldn't find it in > the file)? I don't think it has to be anything. See this quotation from the spec (http://www.xml-rpc.com/spec): > The payload is in XML, a single structure. > > The must contain a sub-item, a string, > containing the name of the method to be called. The string may only > contain identifier characters, upper and lower-case A-Z, the numeric > characters, 0-9, underscore, dot, colon and slash. It's entirely up > to the server to decide how to interpret the characters in a > methodName. > > For example, the methodName could be the name of a file containing a > script that executes on an incoming request. It could be the name of > a cell in a database table. Or it could be a path to a file > contained within a hierarchy of folders and files. As you can see, it's entirely up to you how to choose what naming convention you wish to use. The easiest thing, given that PHP lacks namespaces, is to omit the period completely and just have the value stored in the be the name of your PHP function. Or not. :) -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From danielc at analysisandsolutions.com Tue Mar 30 01:21:33 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 30 Mar 2004 01:21:33 -0500 Subject: [nycphp-talk] SecurityFocus Newsletter #242 blah blah Message-ID: <20040330062132.GA19494@panix.com> PHP stuff in SecurityFocus Newsletter #242 PHP-Nuke Error Manager Module Multiple Vulnerabilities http://www.securityfocus.com/bid/9911 phpBB profile.php avatarselect Cross-Site Scripting Vulnerab... http://www.securityfocus.com/bid/9938 JelSoft VBulletin Private.PHP Cross-Site Scripting Vulnerabi... http://www.securityfocus.com/bid/9940 phpBB Multiple Input Validation Vulnerabilities http://www.securityfocus.com/bid/9942 JelSoft VBulletin Multiple Module Index.PHP Cross-Site Scrip... Remote: Yes http://www.securityfocus.com/bid/9943 Invision Gallery Multiple SQL Injection Vulnerabilities http://www.securityfocus.com/bid/9944 Invision Power Top Site List Comments function id Parameter ... http://www.securityfocus.com/bid/9945 PHP-Nuke MS-Analysis Module Multiple Remote Path Disclosure ... http://www.securityfocus.com/bid/9946 PHP-Nuke MS-Analysis Module Multiple Cross-Site Scripting Vu... http://www.securityfocus.com/bid/9947 PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injectio... http://www.securityfocus.com/bid/9948 --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From adam at trachtenberg.com Tue Mar 30 01:22:50 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 30 Mar 2004 01:22:50 -0500 (EST) Subject: [nycphp-talk] Which XMLRPC server/client do you use? In-Reply-To: <20040330054556.GA16449@uranus.faber.nom> References: <20040329012959.GB29798@uranus.faber.nom> <20040330054556.GA16449@uranus.faber.nom> Message-ID: On Tue, 30 Mar 2004, Faber Fedor wrote: > The XML-RPC from the O'Reilly book is now working, but I'm a bit > bothered that there isn't any traffic in the orums for over two years > and that other people had questions like I did and never got answers. > I'd like to find something with a bit more support. I would like to propose the PEAR XML-RPC class. It's a vital part of PEAR (i.e. the whole system fails to function if it's broken), so you know it's going to be supported. David Sklar's new "Essential PHP Tools: Modules, Extensions, and Accelerators" (Apress) has a whole chapter on PEAR's XML-RPC class. There's also the PEAR Manual (http://pear.php.net/manual/en/package.webservices.php). This package isn't as fast as the bundled C extension (libxmlrpc), but that code is essentially orphaned, AFAIK. So, while it may work, you're on your own for support. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From nyphp at enobrev.com Tue Mar 30 03:18:15 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Tue, 30 Mar 2004 03:18:15 -0500 Subject: [nycphp-talk] Which XMLRPC server/client do you use? In-Reply-To: Message-ID: While on the subject, not sure if this was posted (looked, but didn't see it), ran across this earlier today: http://webservices.xml.com/pub/a/ws/2004/03/24/phpws.html Info about XML-RPC, SOAP and REST with php Mark From erank at isthmus.com Tue Mar 30 10:13:00 2004 From: erank at isthmus.com (Eric Rank) Date: Tue, 30 Mar 2004 09:13:00 -0600 Subject: [nycphp-talk] PEAR::DB insertID??? References: Message-ID: <002101c41669$7dd9f630$8b01a8c0@DB> Howdy folks, I haven't looked extensively at the PEAR documentation, but from what I did see, I couldn't find a means of getting an inserted ID after an insert query. Using mysql_insert_id($dbh->connection) works, but abstracting away from db-specific code is the whole point of PEAR::DB right? Any thoughts? Eric From danielc at analysisandsolutions.com Tue Mar 30 10:35:56 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 30 Mar 2004 10:35:56 -0500 Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: <002101c41669$7dd9f630$8b01a8c0@DB> References: <002101c41669$7dd9f630$8b01a8c0@DB> Message-ID: <20040330153556.GA25422@panix.com> Hi Eric: On Tue, Mar 30, 2004 at 09:13:00AM -0600, Eric Rank wrote: > > query. Using mysql_insert_id($dbh->connection) works, but abstracting away > from db-specific code is the whole point of PEAR::DB right? Any thoughts? Not all DBMS's provide that capacity. The closest thing DB has is sequences. Read that Intro section in the manual. I'd provide a URI, but pear.php.net isn't responding right now. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From cmerlo at ncc.edu Tue Mar 30 10:42:58 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Tue, 30 Mar 2004 10:42:58 -0500 Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: <002101c41669$7dd9f630$8b01a8c0@DB> References: <002101c41669$7dd9f630$8b01a8c0@DB> Message-ID: <20040330154258.GG19121@ncc.edu> On 2004-03-30 09:13 -0600, Eric Rank wrote: > I haven't looked extensively at the PEAR documentation, but from what I did > see, I couldn't find a means of getting an inserted ID after an insert > query. Using mysql_insert_id($dbh->connection) works, but abstracting away > from db-specific code is the whole point of PEAR::DB right? Any thoughts? I'm not using PEAR::DB (yet), but what I do with MySQL when I need to find this out is: 1) Lock the table 2) Insert what needs to get inserted 3) Query the ID out of the table order by id desc limit 1 4) Unlock the table This assumes, of course, that your IDs are auto_increment. HTH, -c -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo Windows: You'll wish we were kidding. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From adam at trachtenberg.com Tue Mar 30 10:57:03 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 30 Mar 2004 10:57:03 -0500 (EST) Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: <20040330154258.GG19121@ncc.edu> References: <002101c41669$7dd9f630$8b01a8c0@DB> <20040330154258.GG19121@ncc.edu> Message-ID: > I'm not using PEAR::DB (yet), but what I do with MySQL when I need to > find this out is: > > 1) Lock the table > 2) Insert what needs to get inserted > 3) Query the ID out of the table order by id desc limit 1 > 4) Unlock the table Bleach. :) Use mysql_insert_id() instead and you can skip the table locking. http://us4.php.net/manual/en/function.mysql-insert-id.php Yes, it's smart enough to return your insert id even if a different process inserts another row into the table in between your insert and the call to mysql_insert_id(). -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From cmerlo at ncc.edu Tue Mar 30 11:00:32 2004 From: cmerlo at ncc.edu (Christopher R. Merlo) Date: Tue, 30 Mar 2004 11:00:32 -0500 Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: References: <002101c41669$7dd9f630$8b01a8c0@DB> <20040330154258.GG19121@ncc.edu> Message-ID: <20040330160032.GH19121@ncc.edu> On 2004-03-30 10:57 -0500, Adam Maccabee Trachtenberg wrote: > Bleach. :) Use mysql_insert_id() instead and you can skip the table locking. > > http://us4.php.net/manual/en/function.mysql-insert-id.php Oh, cool! I love this list. :) -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo Windows: You'll wish we were kidding. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available URL: From erank at isthmus.com Tue Mar 30 11:16:53 2004 From: erank at isthmus.com (Eric Rank) Date: Tue, 30 Mar 2004 10:16:53 -0600 Subject: [nycphp-talk] PEAR::DB insertID??? References: <002101c41669$7dd9f630$8b01a8c0@DB> <20040330154258.GG19121@ncc.edu> Message-ID: <00a001c41672$69d86a50$8b01a8c0@DB> Thanks for the tips. mysql_insert_id() it is. Although I am curious about the forementioned sequences. I'll look a little deeper. For some context: Perhaps it's obvious, perhaps it's not, the whole point of grabbing the id of an auto-incremented record is to records to related tables using the inserted id as a foreign key. For example, after insterting a record into a 'user' table, I need to use the id of that user as the 'userid' in an 'emailaddresses' table. I just imagined that the best way to do this is to use something analagous to mysql_inserted_id() to get the id. Is there a better way to do a series of related inserts? Eric. ----- Original Message ----- From: "Adam Maccabee Trachtenberg" To: "NYPHP Talk" Sent: Tuesday, March 30, 2004 9:57 AM Subject: Re: [nycphp-talk] PEAR::DB insertID??? > > I'm not using PEAR::DB (yet), but what I do with MySQL when I need to > > find this out is: > > > > 1) Lock the table > > 2) Insert what needs to get inserted > > 3) Query the ID out of the table order by id desc limit 1 > > 4) Unlock the table > > Bleach. :) Use mysql_insert_id() instead and you can skip the table locking. > > http://us4.php.net/manual/en/function.mysql-insert-id.php > > Yes, it's smart enough to return your insert id even if a different > process inserts another row into the table in between your insert and > the call to mysql_insert_id(). > > -adam > > -- > adam at trachtenberg.com > author of o'reilly's php cookbook > avoid the holiday rush, buy your copy today! > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From erank at isthmus.com Tue Mar 30 11:40:44 2004 From: erank at isthmus.com (Eric Rank) Date: Tue, 30 Mar 2004 10:40:44 -0600 Subject: [nycphp-talk] PEAR::DB insertID??? References: <002101c41669$7dd9f630$8b01a8c0@DB><20040330154258.GG19121@ncc.edu> <00a001c41672$69d86a50$8b01a8c0@DB> Message-ID: <00df01c41675$bf269ce0$8b01a8c0@DB> Actually, after looking at the sequences in PEAR::DB, I think that might be an interesting solution. Although the docs are pretty scant. Does anyone have more experience using this? Eric. ----- Original Message ----- From: "Eric Rank" To: "NYPHP Talk" Sent: Tuesday, March 30, 2004 10:16 AM Subject: Re: [nycphp-talk] PEAR::DB insertID??? > Thanks for the tips. mysql_insert_id() it is. > > Although I am curious about the forementioned sequences. I'll look a little > deeper. > > For some context: > > Perhaps it's obvious, perhaps it's not, the whole point of grabbing the id > of an auto-incremented record is to records to related tables using the > inserted id as a foreign key. For example, after insterting a record into a > 'user' table, I need to use the id of that user as the 'userid' in an > 'emailaddresses' table. I just imagined that the best way to do this is to > use something analagous to mysql_inserted_id() to get the id. Is there a > better way to do a series of related inserts? > > Eric. > > > ----- Original Message ----- > From: "Adam Maccabee Trachtenberg" > To: "NYPHP Talk" > Sent: Tuesday, March 30, 2004 9:57 AM > Subject: Re: [nycphp-talk] PEAR::DB insertID??? > > > > > I'm not using PEAR::DB (yet), but what I do with MySQL when I need to > > > find this out is: > > > > > > 1) Lock the table > > > 2) Insert what needs to get inserted > > > 3) Query the ID out of the table order by id desc limit 1 > > > 4) Unlock the table > > > > Bleach. :) Use mysql_insert_id() instead and you can skip the table > locking. > > > > http://us4.php.net/manual/en/function.mysql-insert-id.php > > > > Yes, it's smart enough to return your insert id even if a different > > process inserts another row into the table in between your insert and > > the call to mysql_insert_id(). > > > > -adam > > > > -- > > adam at trachtenberg.com > > author of o'reilly's php cookbook > > avoid the holiday rush, buy your copy today! > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From adam at trachtenberg.com Tue Mar 30 11:54:16 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 30 Mar 2004 11:54:16 -0500 (EST) Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: <00df01c41675$bf269ce0$8b01a8c0@DB> References: <002101c41669$7dd9f630$8b01a8c0@DB><20040330154258.GG19121@ncc.edu> <00a001c41672$69d86a50$8b01a8c0@DB> <00df01c41675$bf269ce0$8b01a8c0@DB> Message-ID: On Tue, 30 Mar 2004, Eric Rank wrote: > Actually, after looking at the sequences in PEAR::DB, I think that might be > an interesting solution. Although the docs are pretty scant. Does anyone > have more experience using this? In my continual pursuit of plugging David's book, I suggest "Essential PHP Tools: Modules, Extensions, and Accelerators" by David Sklar. The first chapter is on PEAR::DB and the second is on ADODB. http://www.amazon.com/exec/obidos/ASIN/1590592808/trachtenberg-20/ref=nosim Of course, Daniel knows more about PEAR::DB than Mr. Pear himself, but it's sometimes easier to read up about a subject before subjecting the maintainer to questions. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! From Rafi.Sheikh at Ingenix.com Tue Mar 30 12:08:10 2004 From: Rafi.Sheikh at Ingenix.com (Rafi Sheikh) Date: Tue, 30 Mar 2004 11:08:10 -0600 Subject: [nycphp-talk] TTF Issue Message-ID: Hi List: BASICS: Apache 1.3.29 PHP 4.3.4 (compiled with gd and ttf) TrueType installed OS: AIX 5 on a IBM machine OTHER: Correctly listed TTF_DIRECTORY path in jpgraph.php BACKGROUND: Using jpgraph to produce some dynamic graphs from MySQL db. ISSUE: Looks like a TrueType issue. The graph appears correctly but without Titles or lables on either axis. I have tried jpgraph forum but cannot get anyone to answer (low traffic perhaps). This list has had helped me from my novice days (starting) to now (mid level)...so if this is off-topic my apologies... however, any suggestion is deeply appreciated! SUMMARY: graphs image appears but without title or axis labels. Font used are VERDANA, or TIMES Much regards, Rafi -----Original Message----- From: talk-request at lists.nyphp.org [mailto:talk-request at lists.nyphp.org] Sent: Tuesday, March 30, 2004 11:00 AM To: talk at lists.nyphp.org Subject: talk Digest, Vol 10, Issue 58 Send talk mailing list submissions to talk at lists.nyphp.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.nyphp.org/mailman/listinfo/talk or, via email, send a message with subject or body 'help' to talk-request at lists.nyphp.org You can reach the person managing the list at talk-owner at lists.nyphp.org When replying, please edit your Subject line so it is more specific than "Re: Contents of talk digest..." Today's Topics: 1. SecurityFocus Newsletter #242 blah blah (Daniel Convissor) 2. Re: Which XMLRPC server/client do you use? (Adam Maccabee Trachtenberg) 3. RE: Which XMLRPC server/client do you use? (Mark Armendariz) 4. PEAR::DB insertID??? (Eric Rank) 5. Re: PEAR::DB insertID??? (Daniel Convissor) 6. Re: PEAR::DB insertID??? (Christopher R. Merlo) 7. Re: PEAR::DB insertID??? (Adam Maccabee Trachtenberg) 8. Re: PEAR::DB insertID??? (Christopher R. Merlo) 9. Re: PEAR::DB insertID??? (Eric Rank) 10. Re: PEAR::DB insertID??? (Eric Rank) 11. Re: PEAR::DB insertID??? (Adam Maccabee Trachtenberg) ---------------------------------------------------------------------- Message: 1 Date: Tue, 30 Mar 2004 01:21:33 -0500 From: Daniel Convissor Subject: [nycphp-talk] SecurityFocus Newsletter #242 blah blah To: NYPHP Talk Message-ID: <20040330062132.GA19494 at panix.com> Content-Type: text/plain; charset=us-ascii PHP stuff in SecurityFocus Newsletter #242 PHP-Nuke Error Manager Module Multiple Vulnerabilities http://www.securityfocus.com/bid/9911 phpBB profile.php avatarselect Cross-Site Scripting Vulnerab... http://www.securityfocus.com/bid/9938 JelSoft VBulletin Private.PHP Cross-Site Scripting Vulnerabi... http://www.securityfocus.com/bid/9940 phpBB Multiple Input Validation Vulnerabilities http://www.securityfocus.com/bid/9942 JelSoft VBulletin Multiple Module Index.PHP Cross-Site Scrip... Remote: Yes http://www.securityfocus.com/bid/9943 Invision Gallery Multiple SQL Injection Vulnerabilities http://www.securityfocus.com/bid/9944 Invision Power Top Site List Comments function id Parameter ... http://www.securityfocus.com/bid/9945 PHP-Nuke MS-Analysis Module Multiple Remote Path Disclosure ... http://www.securityfocus.com/bid/9946 PHP-Nuke MS-Analysis Module Multiple Cross-Site Scripting Vu... http://www.securityfocus.com/bid/9947 PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injectio... http://www.securityfocus.com/bid/9948 --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 2 Date: Tue, 30 Mar 2004 01:22:50 -0500 (EST) From: Adam Maccabee Trachtenberg Subject: Re: [nycphp-talk] Which XMLRPC server/client do you use? To: NYPHP Talk Message-ID: Content-Type: TEXT/PLAIN; charset=US-ASCII On Tue, 30 Mar 2004, Faber Fedor wrote: > The XML-RPC from the O'Reilly book is now working, but I'm a bit > bothered that there isn't any traffic in the orums for over two years > and that other people had questions like I did and never got answers. > I'd like to find something with a bit more support. I would like to propose the PEAR XML-RPC class. It's a vital part of PEAR (i.e. the whole system fails to function if it's broken), so you know it's going to be supported. David Sklar's new "Essential PHP Tools: Modules, Extensions, and Accelerators" (Apress) has a whole chapter on PEAR's XML-RPC class. There's also the PEAR Manual (http://pear.php.net/manual/en/package.webservices.php). This package isn't as fast as the bundled C extension (libxmlrpc), but that code is essentially orphaned, AFAIK. So, while it may work, you're on your own for support. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! ------------------------------ Message: 3 Date: Tue, 30 Mar 2004 03:18:15 -0500 From: "Mark Armendariz" Subject: RE: [nycphp-talk] Which XMLRPC server/client do you use? To: "'NYPHP Talk'" Message-ID: Content-Type: text/plain; charset="us-ascii" While on the subject, not sure if this was posted (looked, but didn't see it), ran across this earlier today: http://webservices.xml.com/pub/a/ws/2004/03/24/phpws.html Info about XML-RPC, SOAP and REST with php Mark ------------------------------ Message: 4 Date: Tue, 30 Mar 2004 09:13:00 -0600 From: "Eric Rank" Subject: [nycphp-talk] PEAR::DB insertID??? To: "NYPHP Talk" Message-ID: <002101c41669$7dd9f630$8b01a8c0 at DB> Content-Type: text/plain; charset="iso-8859-1" Howdy folks, I haven't looked extensively at the PEAR documentation, but from what I did see, I couldn't find a means of getting an inserted ID after an insert query. Using mysql_insert_id($dbh->connection) works, but abstracting away from db-specific code is the whole point of PEAR::DB right? Any thoughts? Eric ------------------------------ Message: 5 Date: Tue, 30 Mar 2004 10:35:56 -0500 From: Daniel Convissor Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: NYPHP Talk Message-ID: <20040330153556.GA25422 at panix.com> Content-Type: text/plain; charset=us-ascii Hi Eric: On Tue, Mar 30, 2004 at 09:13:00AM -0600, Eric Rank wrote: > > query. Using mysql_insert_id($dbh->connection) works, but abstracting away > from db-specific code is the whole point of PEAR::DB right? Any thoughts? Not all DBMS's provide that capacity. The closest thing DB has is sequences. Read that Intro section in the manual. I'd provide a URI, but pear.php.net isn't responding right now. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 ------------------------------ Message: 6 Date: Tue, 30 Mar 2004 10:42:58 -0500 From: "Christopher R. Merlo" Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: NYPHP Talk Message-ID: <20040330154258.GG19121 at ncc.edu> Content-Type: text/plain; charset="us-ascii" On 2004-03-30 09:13 -0600, Eric Rank wrote: > I haven't looked extensively at the PEAR documentation, but from what I did > see, I couldn't find a means of getting an inserted ID after an insert > query. Using mysql_insert_id($dbh->connection) works, but abstracting away > from db-specific code is the whole point of PEAR::DB right? Any thoughts? I'm not using PEAR::DB (yet), but what I do with MySQL when I need to find this out is: 1) Lock the table 2) Insert what needs to get inserted 3) Query the ID out of the table order by id desc limit 1 4) Unlock the table This assumes, of course, that your IDs are auto_increment. HTH, -c -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo Windows: You'll wish we were kidding. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://lists.nyphp.org/pipermail/talk/attachments/20040330/606018fc/attachme nt-0001.bin ------------------------------ Message: 7 Date: Tue, 30 Mar 2004 10:57:03 -0500 (EST) From: Adam Maccabee Trachtenberg Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: NYPHP Talk Message-ID: Content-Type: TEXT/PLAIN; charset=US-ASCII > I'm not using PEAR::DB (yet), but what I do with MySQL when I need to > find this out is: > > 1) Lock the table > 2) Insert what needs to get inserted > 3) Query the ID out of the table order by id desc limit 1 > 4) Unlock the table Bleach. :) Use mysql_insert_id() instead and you can skip the table locking. http://us4.php.net/manual/en/function.mysql-insert-id.php Yes, it's smart enough to return your insert id even if a different process inserts another row into the table in between your insert and the call to mysql_insert_id(). -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! ------------------------------ Message: 8 Date: Tue, 30 Mar 2004 11:00:32 -0500 From: "Christopher R. Merlo" Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: NYPHP Talk Message-ID: <20040330160032.GH19121 at ncc.edu> Content-Type: text/plain; charset="us-ascii" On 2004-03-30 10:57 -0500, Adam Maccabee Trachtenberg wrote: > Bleach. :) Use mysql_insert_id() instead and you can skip the table locking. > > http://us4.php.net/manual/en/function.mysql-insert-id.php Oh, cool! I love this list. :) -- cmerlo at ncc.edu http://turing.matcmp.ncc.edu/~cmerlo Windows: You'll wish we were kidding. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://lists.nyphp.org/pipermail/talk/attachments/20040330/310be561/attachme nt-0001.bin ------------------------------ Message: 9 Date: Tue, 30 Mar 2004 10:16:53 -0600 From: "Eric Rank" Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: "NYPHP Talk" Message-ID: <00a001c41672$69d86a50$8b01a8c0 at DB> Content-Type: text/plain; charset="iso-8859-1" Thanks for the tips. mysql_insert_id() it is. Although I am curious about the forementioned sequences. I'll look a little deeper. For some context: Perhaps it's obvious, perhaps it's not, the whole point of grabbing the id of an auto-incremented record is to records to related tables using the inserted id as a foreign key. For example, after insterting a record into a 'user' table, I need to use the id of that user as the 'userid' in an 'emailaddresses' table. I just imagined that the best way to do this is to use something analagous to mysql_inserted_id() to get the id. Is there a better way to do a series of related inserts? Eric. ----- Original Message ----- From: "Adam Maccabee Trachtenberg" To: "NYPHP Talk" Sent: Tuesday, March 30, 2004 9:57 AM Subject: Re: [nycphp-talk] PEAR::DB insertID??? > > I'm not using PEAR::DB (yet), but what I do with MySQL when I need to > > find this out is: > > > > 1) Lock the table > > 2) Insert what needs to get inserted > > 3) Query the ID out of the table order by id desc limit 1 > > 4) Unlock the table > > Bleach. :) Use mysql_insert_id() instead and you can skip the table locking. > > http://us4.php.net/manual/en/function.mysql-insert-id.php > > Yes, it's smart enough to return your insert id even if a different > process inserts another row into the table in between your insert and > the call to mysql_insert_id(). > > -adam > > -- > adam at trachtenberg.com > author of o'reilly's php cookbook > avoid the holiday rush, buy your copy today! > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 10 Date: Tue, 30 Mar 2004 10:40:44 -0600 From: "Eric Rank" Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: "NYPHP Talk" Message-ID: <00df01c41675$bf269ce0$8b01a8c0 at DB> Content-Type: text/plain; charset="iso-8859-1" Actually, after looking at the sequences in PEAR::DB, I think that might be an interesting solution. Although the docs are pretty scant. Does anyone have more experience using this? Eric. ----- Original Message ----- From: "Eric Rank" To: "NYPHP Talk" Sent: Tuesday, March 30, 2004 10:16 AM Subject: Re: [nycphp-talk] PEAR::DB insertID??? > Thanks for the tips. mysql_insert_id() it is. > > Although I am curious about the forementioned sequences. I'll look a little > deeper. > > For some context: > > Perhaps it's obvious, perhaps it's not, the whole point of grabbing the id > of an auto-incremented record is to records to related tables using the > inserted id as a foreign key. For example, after insterting a record into a > 'user' table, I need to use the id of that user as the 'userid' in an > 'emailaddresses' table. I just imagined that the best way to do this is to > use something analagous to mysql_inserted_id() to get the id. Is there a > better way to do a series of related inserts? > > Eric. > > > ----- Original Message ----- > From: "Adam Maccabee Trachtenberg" > To: "NYPHP Talk" > Sent: Tuesday, March 30, 2004 9:57 AM > Subject: Re: [nycphp-talk] PEAR::DB insertID??? > > > > > I'm not using PEAR::DB (yet), but what I do with MySQL when I need to > > > find this out is: > > > > > > 1) Lock the table > > > 2) Insert what needs to get inserted > > > 3) Query the ID out of the table order by id desc limit 1 > > > 4) Unlock the table > > > > Bleach. :) Use mysql_insert_id() instead and you can skip the table > locking. > > > > http://us4.php.net/manual/en/function.mysql-insert-id.php > > > > Yes, it's smart enough to return your insert id even if a different > > process inserts another row into the table in between your insert and > > the call to mysql_insert_id(). > > > > -adam > > > > -- > > adam at trachtenberg.com > > author of o'reilly's php cookbook > > avoid the holiday rush, buy your copy today! > > _______________________________________________ > > talk mailing list > > talk at lists.nyphp.org > > http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk ------------------------------ Message: 11 Date: Tue, 30 Mar 2004 11:54:16 -0500 (EST) From: Adam Maccabee Trachtenberg Subject: Re: [nycphp-talk] PEAR::DB insertID??? To: NYPHP Talk Message-ID: Content-Type: TEXT/PLAIN; charset=US-ASCII On Tue, 30 Mar 2004, Eric Rank wrote: > Actually, after looking at the sequences in PEAR::DB, I think that might be > an interesting solution. Although the docs are pretty scant. Does anyone > have more experience using this? In my continual pursuit of plugging David's book, I suggest "Essential PHP Tools: Modules, Extensions, and Accelerators" by David Sklar. The first chapter is on PEAR::DB and the second is on ADODB. http://www.amazon.com/exec/obidos/ASIN/1590592808/trachtenberg-20/ref=nosim Of course, Daniel knows more about PEAR::DB than Mr. Pear himself, but it's sometimes easier to read up about a subject before subjecting the maintainer to questions. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! ------------------------------ _______________________________________________ talk mailing list talk at lists.nyphp.org http://lists.nyphp.org/mailman/listinfo/talk End of talk Digest, Vol 10, Issue 58 ************************************ This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or his or her authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. From danielc at analysisandsolutions.com Tue Mar 30 12:09:19 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Tue, 30 Mar 2004 12:09:19 -0500 Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: References: <00a001c41672$69d86a50$8b01a8c0@DB> <00df01c41675$bf269ce0$8b01a8c0@DB> Message-ID: <20040330170919.GA9940@panix.com> Howdy: On Tue, Mar 30, 2004 at 11:54:16AM -0500, Adam Maccabee Trachtenberg wrote: > > http://www.amazon.com/exec/obidos/ASIN/1590592808/trachtenberg-20/ref=nosim /ref=nosim. What's that do? Hack, hack, hack. Oh! Handy. I've now added that to my Amazon associate links. Thanks. > Of course, Daniel knows more about PEAR::DB than Mr. Pear himself, but > it's sometimes easier to read up about a subject before subjecting the > maintainer to questions. Sounds good to me. :) Not to disuade anyone from using David's book, I've put in considerable time refining PEAR DB's documentation. http://pear.php.net/manual/en/package.database.php If anyone finds something there unclear, please do let me know so I can make the docs even better. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From sklar at sklar.com Tue Mar 30 12:13:51 2004 From: sklar at sklar.com (David Sklar) Date: Tue, 30 Mar 2004 12:13:51 -0500 Subject: [nycphp-talk] PEAR::DB insertID??? In-Reply-To: <20040330170919.GA9940@panix.com> References: <00a001c41672$69d86a50$8b01a8c0@DB> <00df01c41675$bf269ce0$8b01a8c0@DB> <20040330170919.GA9940@panix.com> Message-ID: <4069AACF.6000701@sklar.com> > Sounds good to me. :) Not to disuade anyone from using David's book, I've > put in considerable time refining PEAR DB's documentation. > http://pear.php.net/manual/en/package.database.php If anyone finds > something there unclear, please do let me know so I can make the docs even > better. Definitely. The PEAR DB docs are excellent. They are the role model for all the other PEAR modules! David >From hans not junk at nyphp.com Tue Mar 30 12:55:40 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id 087BEA85E9 for ; Tue, 30 Mar 2004 12:55:40 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Tue, 30 Mar 2004 09:57:27 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F870122B405 at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: PHP Quebec Conference Thread-Index: AcQWgHZ7kWP+nCmvSKWIqUSQI/3hkA== From: "Hans Zaunere" To: "NYPHP Talk" Subject: [nycphp-talk] PHP Quebec Conference X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Mar 2004 17:55:40 -0000 Hi all, Back from Montreal and the PHP Quebec Conference. With apparently no more phpCon either in the West or East, I'd recommend Quebec. The turnout was huge, and the conference, talks, and activities were very well put together and organized. Damien Seguy and the PHP Quebec team did a great job, and I strongly recommend it as a PHP conference in North America. Best, --- Hans Zaunere President New York PHP http://nyphp.org From shiflett at php.net Tue Mar 30 13:11:30 2004 From: shiflett at php.net (Chris Shiflett) Date: Tue, 30 Mar 2004 10:11:30 -0800 (PST) Subject: [nycphp-talk] PHP Quebec Conference In-Reply-To: <41EE526EC2D3C74286415780D3BA9F870122B405@ehost011-1.exch011.intermedia.net> Message-ID: <20040330181130.6735.qmail@web14306.mail.yahoo.com> --- Hans Zaunere wrote: > Back from Montreal and the PHP Quebec Conference. With apparently no > more phpCon either in the West or East, I'd recommend Quebec. The > turnout was huge, and the conference, talks, and activities were very > well put together and organized. Damien Seguy and the PHP Quebec team > did a great job, and I strongly recommend it as a PHP conference in > North America. Sounds great. When's NYPHP-Con? :-) Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming Fall 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ From adam at trachtenberg.com Tue Mar 30 13:24:47 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Tue, 30 Mar 2004 13:24:47 -0500 (EST) Subject: [nycphp-talk] PHP Quebec Conference In-Reply-To: <41EE526EC2D3C74286415780D3BA9F870122B405@ehost011-1.exch011.intermedia.net> References: <41EE526EC2D3C74286415780D3BA9F870122B405@ehost011-1.exch011.intermedia.net> Message-ID: On Tue, 30 Mar 2004, Hans Zaunere wrote: > Back from Montreal and the PHP Quebec Conference. With apparently no > more phpCon either in the West or East, I'd recommend Quebec. The > turnout was huge, and the conference, talks, and activities were very > well put together and organized. Damien Seguy and the PHP Quebec team > did a great job, and I strongly recommend it as a PHP conference in > North America. I had a great time. Lots of interesting people. Best thing about the conference is that they really do speak French up there! Even better than trying to get a Canadian to say "about." :) Also, there's some good prices on liquor served up the duty free on the way home. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today! >From hans not junk at nyphp.com Tue Mar 30 14:07:09 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id 6C087A85E9 for ; Tue, 30 Mar 2004 14:07:09 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] PHP Quebec Conference Date: Tue, 30 Mar 2004 11:08:56 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F870122B47F at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] PHP Quebec Conference Thread-Index: AcQWgnJGVBEJoBcyQ0yOTu9KvPiZJgAB88Yw From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Mar 2004 19:07:09 -0000 > --- Hans Zaunere wrote: > > Back from Montreal and the PHP Quebec Conference. With apparently no > > more phpCon either in the West or East, I'd recommend Quebec. The > > turnout was huge, and the conference, talks, and activities were very > > well put together and organized. Damien Seguy and the PHP Quebec team > > did a great job, and I strongly recommend it as a PHP conference in > > North America. >=20 > Sounds great. When's NYPHP-Con? :-) Well... maybe not too far off :) NYPHP, along with some of the larger groups in NY like NYCBUG and NYLUG, is considering an informal get-together this summer in Central park, some thereabouts. It wouldn't be PHP specific, but certainly a great way to meet with others in various Open Source circles. H From lists at prusak.com Tue Mar 30 16:56:46 2004 From: lists at prusak.com (Ophir Prusak) Date: Tue, 30 Mar 2004 16:56:46 -0500 Subject: [nycphp-talk] Looking for comparison engine. Message-ID: <4069ED1E.8090602@prusak.com> Hi all, I'm looking for a "comparison engine" for PHP. I'm not sure if this is the correct term though. Basically, it's something what you see on many retail sites that allow you to pick what items you want to compare by checking a checkbox and then click on the compare button and you get a comparison view of the items. For example: Before: http://www1.shopping.com/xPP-Digital_Cameras After: http://www1.shopping.com/xSBS-Digital_Cameras~PG-1~NCP-3~PRDLT-21078036-21848960-21858761 I know it would be easy to roll my own solution, but it it's already been done, no point in re-inventing the wheel. Thanx Ophir From nonreal at nonreal.ro Wed Mar 31 03:57:35 2004 From: nonreal at nonreal.ro (Ovidiu) Date: Wed, 31 Mar 2004 11:57:35 +0300 Subject: [nycphp-talk] Mysql query result for php Message-ID: <200403311157350578.032EBB69@mail.nonreal.ro> Hello. I'm using a graph class to generate stats. This class requires one var named $names witch must be $names=("name1","name2","name3",...) ( from class example). I need to construct some graph with data retrieved from a mysql database. Any ideea how to output a mysql query result into that format ? When I print_r $names i see something like that : Array ( [0] => text1 [1] => text2 [2] => test3 ) -------------- next part -------------- An HTML attachment was scrubbed... URL: From jonbaer at jonbaer.net Wed Mar 31 06:13:40 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 31 Mar 2004 06:13:40 -0500 Subject: [nycphp-talk] Mysql query result for php References: <200403311157350578.032EBB69@mail.nonreal.ro> Message-ID: <003201c41711$3a8f01b0$6400a8c0@thinkpad> if you just need the values of the array for your class use array_values() like: $names = array_values($text_array); http://us2.php.net/manual/en/function.array-values.php hth, - jon ----- Original Message ----- From: Ovidiu To: talk at lists.nyphp.org Sent: Wednesday, March 31, 2004 3:57 AM Subject: [nycphp-talk] Mysql query result for php Hello. I'm using a graph class to generate stats. This class requires one var named $names witch must be $names=("name1","name2","name3",...) ( from class example). I need to construct some graph with data retrieved from a mysql database. Any ideea how to output a mysql query result into that format ? When I print_r $names i see something like that : Array ( [0] => text1 [1] => text2 [2] => test3 ) -------------- next part -------------- An HTML attachment was scrubbed... URL: From nonreal at nonreal.ro Wed Mar 31 06:21:39 2004 From: nonreal at nonreal.ro (Ovidiu) Date: Wed, 31 Mar 2004 14:21:39 +0300 Subject: [nycphp-talk] Mysql query result for php In-Reply-To: <003201c41711$3a8f01b0$6400a8c0@thinkpad> References: <200403311157350578.032EBB69@mail.nonreal.ro> <003201c41711$3a8f01b0$6400a8c0@thinkpad> Message-ID: <200403311421390750.03B2A1B5@mail.nonreal.ro> Solved my problem: $results=array(); while ($row = mysql_fetch_array($firme)) { array_push ($results, $row['ClientClassName']); } print_r ($results) will display something similar to Array ( [0] => text1 [1] => text2 [2] => test3 ) *********** REPLY SEPARATOR *********** On 3/31/2004 at 6:13 AM jon baer wrote: if you just need the values of the array for your class use array_values() like: $names = array_values($text_array); http://us2.php.net/manual/en/function.array-values.php hth, - jon ----- Original Message ----- From: Ovidiu To: talk at lists.nyphp.org Sent: Wednesday, March 31, 2004 3:57 AM Subject: [nycphp-talk] Mysql query result for php Hello. I'm using a graph class to generate stats. This class requires one var named $names witch must be $names=("name1","name2","name3",...) ( from class example). I need to construct some graph with data retrieved from a mysql database. Any ideea how to output a mysql query result into that format ? When I print_r $names i see something like that : Array ( [0] => text1 [1] => text2 [2] => test3 ) -------------- next part -------------- An HTML attachment was scrubbed... URL: From jonbaer at jonbaer.net Wed Mar 31 07:33:35 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 31 Mar 2004 07:33:35 -0500 Subject: [nycphp-talk] Determining client speed w/ php ... Message-ID: <008a01c4171c$63074340$6400a8c0@thinkpad> im trying to figure this out + not sure if a hack in php will work ... someone wants to throw in a klipmart like app (video) for only broadband users however i had a tough time explaining that there are a few factors to consider like the load and that there was no way to programmatically determine a clients connection speed through php itself. my thinking for a hack include something like a hidden page which does a session-based request in which a test image is sent out and then performing a onload() back to the server and testing the session times ... but is this practical? any other ideas? (people are out to kill the net) lol - jon pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 From nyphp at enobrev.com Wed Mar 31 08:21:35 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Wed, 31 Mar 2004 08:21:35 -0500 Subject: [nycphp-talk] Determining client speed w/ php ... In-Reply-To: <008a01c4171c$63074340$6400a8c0@thinkpad> Message-ID: I haven't tried this, but it seems like it could work... If you're at all proficient with flash, you could probably take a preloader script (basically loads a file and reports the bytes_loaded / bytes_total), load a file with flash and have the flash movie report the download speed to your script. Mark > -----Original Message----- > From: talk-bounces at lists.nyphp.org > [mailto:talk-bounces at lists.nyphp.org] On Behalf Of jon baer > Sent: Wednesday, March 31, 2004 7:34 AM > To: talk at lists.nyphp.org > Subject: [nycphp-talk] Determining client speed w/ php ... > > im trying to figure this out + not sure if a hack in php will work ... > > someone wants to throw in a klipmart like app (video) for > only broadband users however i had a tough time explaining > that there are a few factors to consider like the load and > that there was no way to programmatically determine a clients > connection speed through php itself. > > my thinking for a hack include something like a hidden page > which does a session-based request in which a test image is > sent out and then performing a onload() back to the server > and testing the session times ... but is this practical? any > other ideas? > > (people are out to kill the net) lol > > - jon > > pgp key: http://www.jonbaer.net/jonbaer.asc > fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > > > From jonbaer at jonbaer.net Wed Mar 31 08:33:16 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 31 Mar 2004 08:33:16 -0500 Subject: [nycphp-talk] Determining client speed w/ php ... References: Message-ID: <00a901c41724$b9754b70$6400a8c0@thinkpad> mark - awesome suggestion ... just googled up an article about it after your email ... http://www.sonify.org/home/feature/remixology/019_bandwidthdetection/ thanks! - jon ----- Original Message ----- From: "Mark Armendariz" To: "'NYPHP Talk'" Sent: Wednesday, March 31, 2004 8:21 AM Subject: RE: [nycphp-talk] Determining client speed w/ php ... > I haven't tried this, but it seems like it could work... If you're at all > proficient with flash, you could probably take a preloader script (basically > loads a file and reports the bytes_loaded / bytes_total), load a file with > flash and have the flash movie report the download speed to your script. > From nyphp at enobrev.com Wed Mar 31 08:45:20 2004 From: nyphp at enobrev.com (Mark Armendariz) Date: Wed, 31 Mar 2004 08:45:20 -0500 Subject: [nycphp-talk] Determining client speed w/ php ... In-Reply-To: <00a901c41724$b9754b70$6400a8c0@thinkpad> Message-ID: > > http://www.sonify.org/home/feature/remixology/019_bandwidthdetection/ > > thanks! > > - jon Nice one, I was looking for an example. :) Mark From jsiegel1 at optonline.net Wed Mar 31 09:20:22 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 09:20:22 -0500 Subject: [nycphp-talk] List of sample credit card numbers Message-ID: <406AD3A6.2030304@optonline.net> I'm using this for a current project...thought others might find this useful. Good for testing credit card validation in an ecomm site. Jeff Siegel ------------------ Card Type Sample Number ======================================= VISA 4111 1111 1111 1111 MasterCard 5500 0000 0000 0004 American Express 3400 0000 0000 009 Diner's Club / Carte Blanche 3000 0000 0000 04 Discover 6011 0000 0000 0004 enRoute 2014 0000 0000 009 JCB 3088 0000 0000 0009 From jeffknight at mac.com Wed Mar 31 10:49:37 2004 From: jeffknight at mac.com (PUTAMARE) Date: Wed, 31 Mar 2004 10:49:37 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <406AD3A6.2030304@optonline.net> References: <406AD3A6.2030304@optonline.net> Message-ID: <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> Looks like the germ of a php e-commerce PHundamentals... On Mar 31, 2004, at 9:20 AM, Jeff Siegel wrote: > I'm using this for a current project...thought others might find this > useful. Good for testing credit card validation in an ecomm site. > > Jeff Siegel > ------------------ > > > Card Type Sample Number > ======================================= > VISA 4111 1111 1111 1111 > MasterCard 5500 0000 0000 0004 > American Express 3400 0000 0000 009 > Diner's Club > / Carte Blanche 3000 0000 0000 04 > Discover 6011 0000 0000 0004 > enRoute 2014 0000 0000 009 > JCB 3088 0000 0000 0009 > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > Jeff Knight jeff not junkmail at lushmedia.com 212/213-6558 x 203 LUSH media 110 W 40th St #1502 New York, NY 10018 From jsiegel1 at optonline.net Wed Mar 31 10:59:11 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 10:59:11 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> Message-ID: <406AEACF.1060201@optonline.net> Perhaps it is apropos that Jeff Knight should "throw down (t)his gauntlet." ;) Jeff...what are your thoughts here in terms of a PHundamentals article...can you expand on what you have in mind? Jeff Siegel -------- PUTAMARE wrote: > Looks like the germ of a php e-commerce PHundamentals... > > On Mar 31, 2004, at 9:20 AM, Jeff Siegel wrote: > >> I'm using this for a current project...thought others might find this >> useful. Good for testing credit card validation in an ecomm site. >> >> Jeff Siegel >> ------------------ >> >> >> Card Type Sample Number >> ======================================= >> VISA 4111 1111 1111 1111 >> MasterCard 5500 0000 0000 0004 >> American Express 3400 0000 0000 009 >> Diner's Club >> / Carte Blanche 3000 0000 0000 04 >> Discover 6011 0000 0000 0004 >> enRoute 2014 0000 0000 009 >> JCB 3088 0000 0000 0009 >> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > Jeff Knight > jeff not junkmail at lushmedia.com > 212/213-6558 x 203 > LUSH media > 110 W 40th St #1502 > New York, NY 10018 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jeffknight at mac.com Wed Mar 31 11:04:28 2004 From: jeffknight at mac.com (PUTAMARE) Date: Wed, 31 Mar 2004 11:04:28 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <406AEACF.1060201@optonline.net> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> <406AEACF.1060201@optonline.net> Message-ID: <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> Don't look at me man, I try to avoid e-commerce whenever possible as fiscal responsibility gives me the willies. But, collection of relevant facts (such as the card numbers), and an overview of the current packages free and otherwise would definitely be the kind of thing people on the list would like to see. Besides, as you well know, I'm more of a broad strokes visionary type, and wouldn't want to let any actual work cut into my beer time. On Mar 31, 2004, at 10:59 AM, Jeff Siegel wrote: > Perhaps it is apropos that Jeff Knight should "throw down (t)his > gauntlet." ;) > > Jeff...what are your thoughts here in terms of a PHundamentals > article...can you expand on what you have in mind? > > Jeff Siegel > -------- > > PUTAMARE wrote: > >> Looks like the germ of a php e-commerce PHundamentals... >> On Mar 31, 2004, at 9:20 AM, Jeff Siegel wrote: >>> I'm using this for a current project...thought others might find >>> this useful. Good for testing credit card validation in an ecomm >>> site. >>> >>> Jeff Siegel >>> ------------------ >>> >>> >>> Card Type Sample Number >>> ======================================= >>> VISA 4111 1111 1111 1111 >>> MasterCard 5500 0000 0000 0004 >>> American Express 3400 0000 0000 009 >>> Diner's Club >>> / Carte Blanche 3000 0000 0000 04 >>> Discover 6011 0000 0000 0004 >>> enRoute 2014 0000 0000 009 >>> JCB 3088 0000 0000 0009 >>> >>> >>> _______________________________________________ >>> talk mailing list >>> talk at lists.nyphp.org >>> http://lists.nyphp.org/mailman/listinfo/talk >>> >> Jeff Knight >> jeff not junkmail at lushmedia.com >> 212/213-6558 x 203 >> LUSH media >> 110 W 40th St #1502 >> New York, NY 10018 >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > Jeff Knight jeff not junkmail at lushmedia.com 212/213-6558 x 203 LUSH media 110 W 40th St #1502 New York, NY 10018 From agfische at email.smith.edu Wed Mar 31 11:06:27 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Wed, 31 Mar 2004 11:06:27 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> <406AEACF.1060201@optonline.net> <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> Message-ID: <5DE082E2-832D-11D8-B02D-0003930D07F2@email.smith.edu> I second that. -Aaron On Mar 31, 2004, at 11:04 AM, PUTAMARE wrote: > an overview of the current packages free and otherwise would > definitely be the kind of thing people on the list would like to see. From jsiegel1 at optonline.net Wed Mar 31 11:20:45 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 11:20:45 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> <406AEACF.1060201@optonline.net> <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> Message-ID: <406AEFDD.7090809@optonline.net> "....wouldn't want to let any actual work cut into my beer time. " LOL!!!!!! Jeff PUTAMARE wrote: > Don't look at me man, I try to avoid e-commerce whenever possible as > fiscal responsibility gives me the willies. But, collection of relevant > facts (such as the card numbers), and an overview of the current > packages free and otherwise would definitely be the kind of thing people > on the list would like to see. Besides, as you well know, I'm more of a > broad strokes visionary type, and wouldn't want to let any actual work > cut into my beer time. > > > On Mar 31, 2004, at 10:59 AM, Jeff Siegel wrote: > >> Perhaps it is apropos that Jeff Knight should "throw down (t)his >> gauntlet." ;) >> >> Jeff...what are your thoughts here in terms of a PHundamentals >> article...can you expand on what you have in mind? >> >> Jeff Siegel >> -------- >> >> PUTAMARE wrote: >> >>> Looks like the germ of a php e-commerce PHundamentals... >>> On Mar 31, 2004, at 9:20 AM, Jeff Siegel wrote: >>> >>>> I'm using this for a current project...thought others might find >>>> this useful. Good for testing credit card validation in an ecomm site. >>>> >>>> Jeff Siegel >>>> ------------------ >>>> >>>> >>>> Card Type Sample Number >>>> ======================================= >>>> VISA 4111 1111 1111 1111 >>>> MasterCard 5500 0000 0000 0004 >>>> American Express 3400 0000 0000 009 >>>> Diner's Club >>>> / Carte Blanche 3000 0000 0000 04 >>>> Discover 6011 0000 0000 0004 >>>> enRoute 2014 0000 0000 009 >>>> JCB 3088 0000 0000 0009 >>>> >>>> >>>> _______________________________________________ >>>> talk mailing list >>>> talk at lists.nyphp.org >>>> http://lists.nyphp.org/mailman/listinfo/talk >>>> >>> Jeff Knight >>> jeff not junkmail at lushmedia.com >>> 212/213-6558 x 203 >>> LUSH media >>> 110 W 40th St #1502 >>> New York, NY 10018 >>> _______________________________________________ >>> talk mailing list >>> talk at lists.nyphp.org >>> http://lists.nyphp.org/mailman/listinfo/talk >> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nyphp.org >> http://lists.nyphp.org/mailman/listinfo/talk >> > Jeff Knight > jeff not junkmail at lushmedia.com > 212/213-6558 x 203 > LUSH media > 110 W 40th St #1502 > New York, NY 10018 > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From jsiegel1 at optonline.net Wed Mar 31 11:21:12 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 11:21:12 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <5DE082E2-832D-11D8-B02D-0003930D07F2@email.smith.edu> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> <406AEACF.1060201@optonline.net> <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> <5DE082E2-832D-11D8-B02D-0003930D07F2@email.smith.edu> Message-ID: <406AEFF8.10800@optonline.net> Aaron, You volunteering? :) Jeff Aaron Fischer wrote: > I second that. > > -Aaron > > On Mar 31, 2004, at 11:04 AM, PUTAMARE wrote: > >> an overview of the current packages free and otherwise would >> definitely be the kind of thing people on the list would like to see. > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From agfische at email.smith.edu Wed Mar 31 11:26:32 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Wed, 31 Mar 2004 11:26:32 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <406AEFF8.10800@optonline.net> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> <406AEACF.1060201@optonline.net> <16C3E736-832D-11D8-B24D-000393B9FB36@mac.com> <5DE082E2-832D-11D8-B02D-0003930D07F2@email.smith.edu> <406AEFF8.10800@optonline.net> Message-ID: <2BAC102B-8330-11D8-B02D-0003930D07F2@email.smith.edu> Doh! Not sure where I could help on this one as I have no experience with any commerce packages and my php skills are pretty rudimentary at the moment. That said, be happy to contribute if you see an opportunity. :-) -A On Mar 31, 2004, at 11:21 AM, Jeff Siegel wrote: > Aaron, > > You volunteering? :) > > Jeff > > Aaron Fischer wrote: > >> I second that. >> -Aaron >> On Mar 31, 2004, at 11:04 AM, PUTAMARE wrote: >>> an overview of the current packages free and otherwise would >>> definitely be the kind of thing people on the list would like to >>> see. From southwell at dneba.com Wed Mar 31 11:47:05 2004 From: southwell at dneba.com (Michael Southwell) Date: Wed, 31 Mar 2004 11:47:05 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> Message-ID: <6.0.3.0.2.20040331114257.01e7f108@mail.optonline.net> At 10:49 AM 3/31/2004, you wrote: >Looks like the germ of a php e-commerce PHundamentals... Actually, this would be more suitable for the new AMPeers (which I think have not actually been publicly announced yet--but presumably will be shortly after tonight's Board meeting; John Lacey is the Project Manager). AMPeers are articles written by members of the community on various subjects of interest--as opposed to PHundamentals, which are summaries of best practices, collected in response to an inquiry. Michael G. Southwell ================================= DNEBA Enterprises 81 South Road Bloomingdale, NJ 07403-1419 973/492-7873 (voice and fax) southwell at dneba.com http://www.dneba.com ====================================================== From joel at tagword.com Wed Mar 31 12:27:29 2004 From: joel at tagword.com (Joel De Gan) Date: Wed, 31 Mar 2004 12:27:29 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <406AD3A6.2030304@optonline.net> References: <406AD3A6.2030304@optonline.net> Message-ID: <1080754049.4895.4.camel@bezel> Oh a side note, you should have added the Luhn check digit algorithm which can verify them before sending them off, it is a remarkably easy algorithm. http://www.itsecurity.com/dictionary/luhn.htm cheers Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site On Wed, 2004-03-31 at 09:20, Jeff Siegel wrote: > I'm using this for a current project...thought others might find this > useful. Good for testing credit card validation in an ecomm site. > > Jeff Siegel > ------------------ > > > Card Type Sample Number > ======================================= > VISA 4111 1111 1111 1111 > MasterCard 5500 0000 0000 0004 > American Express 3400 0000 0000 009 > Diner's Club > / Carte Blanche 3000 0000 0000 04 > Discover 6011 0000 0000 0004 > enRoute 2014 0000 0000 009 > JCB 3088 0000 0000 0009 > > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk -- joeldg - developer, Intercosmos media group. http://lucifer.intercosmos.net From jsiegel1 at optonline.net Wed Mar 31 12:21:13 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 12:21:13 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <6.0.3.0.2.20040331114257.01e7f108@mail.optonline.net> References: <406AD3A6.2030304@optonline.net> <0386AE4F-832B-11D8-B24D-000393B9FB36@mac.com> <6.0.3.0.2.20040331114257.01e7f108@mail.optonline.net> Message-ID: <406AFE09.2050900@optonline.net> Agreed...this is an AMPeers article. Jeff Michael Southwell wrote: > At 10:49 AM 3/31/2004, you wrote: > >> Looks like the germ of a php e-commerce PHundamentals... > > > Actually, this would be more suitable for the new AMPeers (which I think > have not actually been publicly announced yet--but presumably will be > shortly after tonight's Board meeting; John Lacey is the Project > Manager). AMPeers are articles written by members of the community on > various subjects of interest--as opposed to PHundamentals, which are > summaries of best practices, collected in response to an inquiry. > > > Michael G. Southwell ================================= > DNEBA Enterprises > 81 South Road > Bloomingdale, NJ 07403-1419 > 973/492-7873 (voice and fax) > southwell at dneba.com > http://www.dneba.com > ====================================================== > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk > From danielc at analysisandsolutions.com Wed Mar 31 12:27:37 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 31 Mar 2004 12:27:37 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <1080754049.4895.4.camel@bezel> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> Message-ID: <20040331172737.GA22333@panix.com> On Wed, Mar 31, 2004 at 12:27:29PM -0500, Joel De Gan wrote: > Oh a side note, you should have added the Luhn check digit algorithm I've got a class that does that: http://www.analysisandsolutions.com/software/ccvs/ccvs.htm --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From jsiegel1 at optonline.net Wed Mar 31 12:38:13 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 12:38:13 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <20040331172737.GA22333@panix.com> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> Message-ID: <406B0205.1070109@optonline.net> Aaron...you takin' notes? ;) Jeff Daniel Convissor wrote: > On Wed, Mar 31, 2004 at 12:27:29PM -0500, Joel De Gan wrote: > >>Oh a side note, you should have added the Luhn check digit algorithm > > > I've got a class that does that: > http://www.analysisandsolutions.com/software/ccvs/ccvs.htm > > --Dan > From jsiegel1 at optonline.net Wed Mar 31 12:38:03 2004 From: jsiegel1 at optonline.net (Jeff Siegel) Date: Wed, 31 Mar 2004 12:38:03 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <1080754049.4895.4.camel@bezel> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> Message-ID: <406B01FB.5080102@optonline.net> Aaron...you takin' notes? ;) Jeff Joel De Gan wrote: > Oh a side note, you should have added the Luhn check digit algorithm > which can verify them before sending them off, it is a remarkably easy > algorithm. > http://www.itsecurity.com/dictionary/luhn.htm > > cheers > > Joel De Gan > --------- > http://listbid.com - php freelance > http://broadwords.com - get $10 free advertising for your site > > On Wed, 2004-03-31 at 09:20, Jeff Siegel wrote: > >>I'm using this for a current project...thought others might find this >>useful. Good for testing credit card validation in an ecomm site. >> >>Jeff Siegel >>------------------ >> >> >>Card Type Sample Number >>======================================= >>VISA 4111 1111 1111 1111 >>MasterCard 5500 0000 0000 0004 >>American Express 3400 0000 0000 009 >>Diner's Club >>/ Carte Blanche 3000 0000 0000 04 >>Discover 6011 0000 0000 0004 >>enRoute 2014 0000 0000 009 >>JCB 3088 0000 0000 0009 >> >> >>_______________________________________________ >>talk mailing list >>talk at lists.nyphp.org >>http://lists.nyphp.org/mailman/listinfo/talk From agfische at email.smith.edu Wed Mar 31 12:42:46 2004 From: agfische at email.smith.edu (Aaron Fischer) Date: Wed, 31 Mar 2004 12:42:46 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <406B0205.1070109@optonline.net> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> <406B0205.1070109@optonline.net> Message-ID: DILIGENTLY. =) On Mar 31, 2004, at 12:38 PM, Jeff Siegel wrote: > Aaron...you takin' notes? ;) > > Jeff > > Daniel Convissor wrote: > >> On Wed, Mar 31, 2004 at 12:27:29PM -0500, Joel De Gan wrote: >>> Oh a side note, you should have added the Luhn check digit algorithm >> I've got a class that does that: >> http://www.analysisandsolutions.com/software/ccvs/ccvs.htm >> --Dan > > _______________________________________________ > talk mailing list > talk at lists.nyphp.org > http://lists.nyphp.org/mailman/listinfo/talk From jonbaer at jonbaer.net Wed Mar 31 16:18:23 2004 From: jonbaer at jonbaer.net (jon baer) Date: Wed, 31 Mar 2004 16:18:23 -0500 Subject: [nycphp-talk] [ot] Win a spammers Porsche ... Message-ID: <015001c41765$b37ee4b0$6400a8c0@thinkpad> funniest item ive read today :-) ... http://www.msnbc.msn.com/id/4631849/ -snip- AOL Users Get Chance To Win Spammer's Porsche Frustrated by spam? Would a Porsche make you feel better? AOL is offering the car seized from a spammer as the grand prize in a new sweepstakes. -snip- pgp key: http://www.jonbaer.net/jonbaer.asc fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47 >From hans not junk at nyphp.com Wed Mar 31 16:56:31 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id 11BF4A85EA for ; Wed, 31 Mar 2004 16:56:31 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] [ot] Win a spammers Porsche ... Date: Wed, 31 Mar 2004 13:58:20 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F870132B7AE at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] [ot] Win a spammers Porsche ... Thread-Index: AcQXZfNsq8OnekDrTQ2upKf5Y8+BnwABRplA From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 Mar 2004 21:56:31 -0000 > http://www.msnbc.msn.com/id/4631849/ >=20 > -snip- > AOL Users Get Chance To Win Spammer's Porsche > Frustrated by spam? Would a Porsche make you feel better? AOL is offering the > car seized from a spammer as the grand prize in a new sweepstakes. Uhh... wait... spammers make enough money to buy Porsches? Maybe I'm doing something wrong then... :) H From dan at mx2pro.com Wed Mar 31 17:29:56 2004 From: dan at mx2pro.com (Dan Horning) Date: Wed, 31 Mar 2004 17:29:56 -0500 Subject: [nycphp-talk] how to make crossover cable - even if you know - you need this tutorial Message-ID: <200403312231.i2VMUNVT006183@ms-smtp-03.nyroc.rr.com> how to make crossover cable http://funny.evilbunny.org/display/2048/ (this is for guys to never forget how to) Dan Horning - Technical Systems Administration http://www.mx2pro.com/ http://dan.mx2pro.com/ 1-866-AVID-150 (Personal Direct Line) From danielc at analysisandsolutions.com Wed Mar 31 17:35:58 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 31 Mar 2004 17:35:58 -0500 Subject: [nycphp-talk] how to make crossover cable - even if you know - you need this tutorial In-Reply-To: <200403312231.i2VMUNVT006183@ms-smtp-03.nyroc.rr.com> References: <200403312231.i2VMUNVT006183@ms-smtp-03.nyroc.rr.com> Message-ID: <20040331223558.GA8282@panix.com> On Wed, Mar 31, 2004 at 05:29:56PM -0500, Dan Horning wrote: > how to make crossover cable > http://funny.evilbunny.org/display/2048/ It'd be funnier if they used transvestites/transgender to make the most of the "crossover" pun. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From dmintz at davidmintz.org Wed Mar 31 17:31:57 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 31 Mar 2004 17:31:57 -0500 (EST) Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <406B0205.1070109@optonline.net> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> <406B0205.1070109@optonline.net> Message-ID: Heh. I get the feeling that the amount of freely available PHP code snippets, utility libraries, classes etc has exploded in the past few years along with PHP adoption. Once upon a time, a few years ago, I could not even find a credit card validator in PHP so I stole and translated Business::CreditCard from CPAN (Perl). FWIW, http://davidmintz.org/code/CreditCard.phps On Wed, 31 Mar 2004, Jeff Siegel wrote: > Aaron...you takin' notes? ;) > > Jeff > > Daniel Convissor wrote: > > > On Wed, Mar 31, 2004 at 12:27:29PM -0500, Joel De Gan wrote: > > > >>Oh a side note, you should have added the Luhn check digit algorithm > > > > > > I've got a class that does that: > > http://www.analysisandsolutions.com/software/ccvs/ccvs.htm --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 >From hans not junk at nyphp.com Wed Mar 31 17:42:01 2004 Return-Path: Received: from ehost011-1.exch011.intermedia.net (unknown [64.78.21.3]) by virtu.nyphp.org (Postfix) with ESMTP id EAC08A85E9 for ; Wed, 31 Mar 2004 17:42:00 -0500 (EST) X-MimeOLE: Produced By Microsoft Exchange V6.5.6944.0 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: [nycphp-talk] List of sample credit card numbers Date: Wed, 31 Mar 2004 14:41:59 -0800 Message-ID: <41EE526EC2D3C74286415780D3BA9F870132B7FD at ehost011-1.exch011.intermedia.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [nycphp-talk] List of sample credit card numbers Thread-Index: AcQXcSUwFm23K3obSC6NXveSd1CdNgAACevg From: "Hans Zaunere" To: "NYPHP Talk" X-BeenThere: talk at lists.nyphp.org X-Mailman-Version: 2.1.2 Precedence: list Reply-To: NYPHP Talk List-Id: NYPHP Talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 Mar 2004 22:42:01 -0000 > Heh. I get the feeling that the amount of freely available=20 > PHP code snippets, utility libraries, classes etc has=20 > exploded in the past few years along with PHP adoption. Once=20 > upon a time, a few years ago, I could not even find a credit=20 > card validator in PHP so I stole and translated=20 > Business::CreditCard from CPAN (Perl). >=20 > FWIW, http://davidmintz.org/code/CreditCard.phps I think this calls for a PCOM! :) H From Kbedi at inta.org Wed Mar 31 17:48:05 2004 From: Kbedi at inta.org (Kshitij Bedi) Date: Wed, 31 Mar 2004 17:48:05 -0500 Subject: [nycphp-talk] List of sample credit card numbers Message-ID: Does anyone know how to display OEM Extended Ascii characters in PHP using the chr function in PHP From Kbedi at inta.org Wed Mar 31 17:49:01 2004 From: Kbedi at inta.org (Kshitij Bedi) Date: Wed, 31 Mar 2004 17:49:01 -0500 Subject: [nycphp-talk] OEM Extended Character with PHP Message-ID: Does anyone know how to display OEM Extended Ascii characters in PHP using the chr function From danielc at analysisandsolutions.com Wed Mar 31 17:46:20 2004 From: danielc at analysisandsolutions.com (Daniel Convissor) Date: Wed, 31 Mar 2004 17:46:20 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> <406B0205.1070109@optonline.net> Message-ID: <20040331224620.GA10269@panix.com> On Wed, Mar 31, 2004 at 05:31:57PM -0500, David Mintz wrote: > > Once upon a time, a few years ago, I could > not even find a credit card validator in PHP That's funny. I've had some incarnation of mine out there since 1999. Guess you were looking in different places for it. > FWIW, http://davidmintz.org/code/CreditCard.phps Nice. --Dan -- T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y data intensive web and database programming http://www.AnalysisAndSolutions.com/ 4015 7th Ave #4, Brooklyn NY 11232 v: 718-854-0335 f: 718-854-0409 From joel at tagword.com Wed Mar 31 18:21:08 2004 From: joel at tagword.com (Joel De Gan) Date: Wed, 31 Mar 2004 18:21:08 -0500 Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> <406B0205.1070109@optonline.net> Message-ID: <1080775268.4781.15.camel@bezel> Yea, it is old school... I wrote one on my TI-85 when I was in college.. circa 1994 It used that algorithm to generate numbers :) I spent a lot of time writing dumb programs for that calc.. On Wed, 2004-03-31 at 17:31, David Mintz wrote: > years along with PHP adoption. Once upon a time, a few years ago, I could > not even find a credit card validator in PHP so I stole and translated > Business::CreditCard from CPAN (Perl). > FWIW, http://davidmintz.org/code/CreditCard.phps Joel De Gan --------- http://listbid.com - php freelance http://broadwords.com - get $10 free advertising for your site From dmintz at davidmintz.org Wed Mar 31 18:20:23 2004 From: dmintz at davidmintz.org (David Mintz) Date: Wed, 31 Mar 2004 18:20:23 -0500 (EST) Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <20040331224620.GA10269@panix.com> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> <406B0205.1070109@optonline.net> <20040331224620.GA10269@panix.com> Message-ID: On Wed, 31 Mar 2004, Daniel Convissor wrote: > > FWIW, http://davidmintz.org/code/CreditCard.phps > > Nice. Long live CPAN (-: --- David Mintz http://davidmintz.org/ "Anybody else got a problem with Webistics?" -- Sopranos 24:17 From adam at trachtenberg.com Wed Mar 31 18:26:08 2004 From: adam at trachtenberg.com (Adam Maccabee Trachtenberg) Date: Wed, 31 Mar 2004 18:26:08 -0500 (EST) Subject: [nycphp-talk] List of sample credit card numbers In-Reply-To: <1080775268.4781.15.camel@bezel> References: <406AD3A6.2030304@optonline.net> <1080754049.4895.4.camel@bezel> <20040331172737.GA22333@panix.com> <406B0205.1070109@optonline.net> <1080775268.4781.15.camel@bezel> Message-ID: On Wed, 31 Mar 2004, Joel De Gan wrote: > Yea, it is old school... > I wrote one on my TI-85 when I was in college.. circa 1994 > It used that algorithm to generate numbers :) > I spent a lot of time writing dumb programs for that calc.. I offer up one from a list member who may wish to remain anonymous: http://www.sklar.com/texts/ti-tank It may even work with a TI-81. -adam -- adam at trachtenberg.com author of o'reilly's php cookbook avoid the holiday rush, buy your copy today!