Posts by MattF (Page 1 of 35)

Funnily enough, that doesn't exude a warm, cushy feeling. You can paint crap white but it will still be crap, and I doubt IE will ever be anything other than. Anyhows, last I heard, they didn't even have a year for arrival approximated, ne'er mind a rough timespan.

Your question is awfully vague on specifics. What, for example, does "not work" mean? That can mean absolutely anything. A meaningful description of the problem or a link to your site would help. I'd personally guess you've cocked the path to the forum index file up.

Cheers. I'd just assumed the MySQLi extension was for that flatfile? variant. I hadn't realised it was the main one now.

I'll admit to not having checked through it thoroughly. I just try to post any links which may possibly be of use before I forget about them, these days.

Edit: Just on the prepared queries note, does anyone know why the pg_ functions in PHP have a far better selection of commands than the other database types? Is it due to limitations of the other DB interfaces or merely that no-one has created the corresponding functions for those PHP DB interfaces yet? Just a curiosity question. For example, pg_prepare, pg_query_params etc. Just wondered if that was liable to change in future, or as to whether using the PDO layer or suchlike was the only way to have consistency of available functions.

http://uk2.php.net/manual/en/ref.pgsql.php
http://uk2.php.net/manual/en/ref.mysql.php

Are you switching between the www. variant and base domain at all, i.e: www.example.org versus just example.org?

Nothing is instantaneous every moment of every day. The old advice always holds true. Try again in a few minutes.

It's easier to just leave it, before she removes your will to live.

If you're that paranoid, or living in a society which is so nefarious, I'd personally say you ought to be considering designing your own system to your own exact specification. It would be bugger all use if you're living in such a society, as there will be far more means than a U.I for the 'state officials' to access any and all information unless your server is hosted by yourself, on your own hardware locally etc. Even then you would not be completely secure. There is one way to keep any and all information secure. Never connect any of your systems to a public network and never allow any users to connect to a system.

Btw, if you make someone whom you don't trust a moderator, then you have no-one to blame but yourself if something goes wrong.

If the display of private information is ignoring some existing security setting then it's a bug. If it's just not living upto someones specific level of paranoia in general, that isn't a bug.

Or they would just use a bot for working across the flood period and you'd get a deluge of posts from a single spammer rather than just the odd one or two. They could do a hell of a lot in the hour or two that no mod/admin may be online.

Just stick that code he posted at the top of register.php, just after the opening php tag.

What might your suggestion be for preventing spam registrations?

Just out of curiosity, how is someone supposed to test something which may be broken without trying to break it? Through psychic ability?

Just on a slight aside, this is the template class where I was sanitising the output in one single location. Just incase anyone may have a use for it or just feel like having a play. (It probably still has some bugs in it yet, as it is still a bairn).

http://outgoing.bauchan.org/unix/template.txt

The $extpls var is just an array containing file names whose content doesn't get sanitised with htmlspecialchars.