Nabble - PHP - General

Re: Required files not being parsed properly...

2008-10-07T07:48:59Z

On Tue, Oct 7, 2008 at 10:32 AM, Jim Lucas <lists@...> wrote:

> Eric Butera wrote:
>> On Mon, Oct 6, 2008 at 7:28 PM, Stephen Johnson
>> <stephen@...> wrote:
>>> OK .. I am upgrading to PHP5 on a clients box, and after doing so I have
>>> run into the problem that files that get brought in by a require statement,
>>> or include, end up just getting dumped to the browser as text..
>>>
>>> For instance :
>>>
>>> require("/home/tnr/incs/tnr_db.php");
>>> $db = new mysql();
>>>
>>> Produces what you see here :
>>>
>>> http://www.thumbnailresume.com/index.html?allow=1
>>>
>>> Any one have any thoughts on what is going on?
>>>
>>> --
>>> Stephen Johnson c | eh
>>> The Lone Coder
>>>
>>> office: 562.366.4433
>>> fax: 562.278.0133
>>>
>>> http://www.thelonecoder.com
>>> continuing the struggle against bad code
>>>
>>> http://www.fortheloveofgeeks.com
>>> I¹m a geek and I¹m OK!
>>> --
>>>
>>>
>>>
>>>
>>
>>
>>
>> $user_id = $_COOKIE['user_id'];
>>
>> $logFile = "/home/tnr/query_logs/tnr.".$user_id.".query.log";
>>
>> uh oh...
>
> Did you scare the OP or something? The page isn't available any longer... :)
>
> --
> Jim Lucas
>
> "Some men are born to greatness, some achieve greatness,
> and some have greatness thrust upon them."
>
> Twelfth Night, Act II, Scene V
> by William Shakespeare
>
>

I hope not, but I also hope it's fixed. After sending that I kicked
myself since it should have been off-list. ;)

Re: Required files not being parsed properly...

2008-10-07T07:32:08Z

Eric Butera wrote:

> On Mon, Oct 6, 2008 at 7:28 PM, Stephen Johnson
> <stephen@...> wrote:
>> OK .. I am upgrading to PHP5 on a clients box, and after doing so I have
>> run into the problem that files that get brought in by a require statement,
>> or include, end up just getting dumped to the browser as text..
>>
>> For instance :
>>
>> require("/home/tnr/incs/tnr_db.php");
>> $db = new mysql();
>>
>> Produces what you see here :
>>
>> http://www.thumbnailresume.com/index.html?allow=1
>>
>> Any one have any thoughts on what is going on?
>>
>> --
>> Stephen Johnson c | eh
>> The Lone Coder
>>
>> office: 562.366.4433
>> fax: 562.278.0133
>>
>> http://www.thelonecoder.com
>> continuing the struggle against bad code
>>
>> http://www.fortheloveofgeeks.com
>> I¹m a geek and I¹m OK!
>> --
>>
>>
>>
>>
>
>
>
> $user_id = $_COOKIE['user_id'];
>
> $logFile = "/home/tnr/query_logs/tnr.".$user_id.".query.log";
>
> uh oh...

Did you scare the OP or something? The page isn't available any longer... :)

--
Jim Lucas

"Some men are born to greatness, some achieve greatness,
and some have greatness thrust upon them."

Twelfth Night, Act II, Scene V
by William Shakespeare

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Re: php framework vs just php?

2008-10-07T07:20:48Z

Farid,

I like to use PRADO(www.pradosoft.com), it is very easy to use for
those who are coming from Microsoft .Net platform as it uses the same
architecture. I did not like symfony, too much to read before the
first example.

Angelo

2008/10/6 farid lópez <faridlopez@...>:

> what is your framework??? uacaman.
>
> i'm using symfony, but i'm reading the book. it's hard but there are so many
> things you can do easily with symfony!
>
> 2008/10/7 uaca man <uacaman@...>
>
>> To be or not to be dump it your choice.
>>
>> My framework it not just awesome it is super awesome.
>>
>> Angelo
>>
>> 2008/10/6 Dan Joseph <dmjoseph@...>:
>> > On Mon, Oct 6, 2008 at 1:01 PM, Jason Pruim <japruim@...> wrote:
>> >
>> >>
>> >> But... Which framework is better? :P
>> >>
>> >>
>> >>
>> >>
>> > Oh my.. now we're gonna get all those guys popping back up telling us how
>> > dumb we are and how awesome their frameworks are again!
>> >
>> > --
>> > -Dan Joseph
>> >
>> > www.canishosting.com - Plans start @ $1.99/month.
>> >
>> > "Build a man a fire, and he will be warm for the rest of the day.
>> > Light a man on fire, and will be warm for the rest of his life."
>> >
>>
>> --
>> PHP General Mailing List (http://www.php.net/)
>> To unsubscribe, visit: http://www.php.net/unsub.php
>>
>>
>
>
> --
> Atte
> Farid H. López Durán
>
> "La naturaleza del hombre es tal que puede conseguir la perfección
> únicamente cuando
> trabaja para el bienestar y la dignidad de sus conciudadanos". Karl Marx
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: $_SERVER["REMOTE_ADDR"] returning ::1

2008-10-07T05:33:24Z

Please keep the discussion on the list.

On 7 Oct 2008, at 06:11, David Rocks wrote:
> Your work around worked fine for me but I just had some time to
> revisit this and wanted to see how hard it would be to rewrite this
> test. But I ran into a question. The test that was failing compared
> the clients IP address. It looks like transparent proxies are used
> for caching web server pages and shouldn't affect this test. I saw
> the problem because I was accessing the web server locally via
> localhost. What technology would raise the possibility that a remote
> clients IP address wouldn't be the same from one access of the web
> server to another?

Proxies do not necessarily cache web pages - this is an optional
feature of the technology. At the most basic level in most
implementations they provide a protected bridge between two networks.

Proxies can be implemented as shared clusters such that any request
going through the cluster could appear to come from one of a number of
IPs (i.e. the client is not tied to a single proxy appliance). In this
instance you cannot rely on a client always coming from the same IP.

In addition it's pretty standard practice for a lot of ISPs to have
relatively short leases on their IP pool. This means that a client
could move between different IPs between requests. This is unlikely
however because I believe most ISPs will do everything they can to
issue a connection with the same IP when the lease expires but it's
not something you can rely on.

In any case you cannot rely on the user not disconnecting their laptop
from a wired connection and then connecting to a wireless connection
that runs through a different router. This would also change their IP.

At the end of the day it's well understood that IP addresses should
not be used for authentication or continuity purposes. I've not come
across a session implementation that uses them for a very long time.

-Stut

--
http://stut.net/

> Stut wrote:
>> On 18 Sep 2008, at 16:37, David Rocks wrote:
>>> Stut wrote:
>>>> On 18 Sep 2008, at 05:57, David Rocks wrote:
>>>>> I am running a test PHP web app on my local machine that uses
>>>>> REMOTE_ADDR and most of the time ::1 is returned as the IP addr
>>>>> and sometimes it is 127.0.0.1 . I am on OS X 10.5.5 and using
>>>>> APACHE 2. PHPINFO always returns ::1 for REMOTE_ADDR. Is this a
>>>>> PHP or a APACHE 2 thing?
>>>> It's coming from Apache and is correct. ::1 is the same as
>>>> 127.0.0.1 in IPv6. Which you get will depend on how you request
>>>> the page and how your DNS/hosts file is set up. Request it with
>>>> an IPv6 domain/IP and REMOTE_ADDR will also be IPv6.
>>>> You should be able to disable IPv6 in your system settings, but
>>>> from a future-proof point of view you should be able to handle
>>>> both.
>>>> -Stut
>>> This app uses this test to insure that the page being processed
>>> came from the same machine as was used to login to the app. The
>>> app is intended for broad use so I can't control the use of IPv6.
>>> Is localhost the only case where the value returned might have
>>> different values? Can you point to a reference where I might
>>> figure out a better future proof test?
>>
>> Using the IP is not a reliable way to check for this. Some ISPs use
>> transparent proxies which can cause each subsequent request to come
>> from a different IP, regardless of whether it's v4 or v6. You'd be
>> better off using a cookie, although that would be a bit less secure.
>>
>> If you really need to use IP then you can probably rely on it not
>> switching between v4 and v6 if you're not using localhost. For
>> testing use the machine's real IP or hostname instead of localhost
>> and this problem should disappear.
>>
>> -Stut
>>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Question about date()

2008-10-07T05:22:07Z

At 1:08 PM +0100 10/7/08, Stut wrote:

>On 7 Oct 2008, at 12:48, Jason Pruim wrote:
>>Thanks for the quick response... You were right... I did a var_dump
>>both on $row['timein'] and $row['timeout'] and the error was
>>because of the way that I update the records. for time in, I insert
>>a new record, for time out, I update the record where timeout= NULL
>>and THAT is what was causing the issue... I guess I can just
>>redirect that error, ignore it, or come up with a different way to
>>update the current record without having to use NULL, or maybe,
>>write a timeout timestamp for like midnight on January 1 1955 or
>>something like that...
>
>Try "is null" rather than "= null".
>
>-Stut

Yes, if I remember correctly, NULL is a different critter for MySQL
as compared to php. You can't directly test (i.e., make comparisons)
for it like you can in php.

As far as updating the time of the record, why not use current date
or 1/1/1970 -- the beginning of the world according to Unix. You
never know if you might have to update your dB to Unix time at some
time in the future.

Cheers,

tedd

--
-------
http://sperling.com http://ancientstones.com http://earthstones.com

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Question about date()

2008-10-07T05:08:37Z

On 7 Oct 2008, at 12:48, Jason Pruim wrote:

>
> On Oct 7, 2008, at 7:41 AM, Stut wrote:
>
>> On 7 Oct 2008, at 12:38, Jason Pruim wrote:
>>> I am trying to track down an error and can't seem to figure it
>>> out... Here is the error out of my log:
>>>
>>> [Tue Oct 7 07:31:43 2008] [error] PHP Warning: date() expects
>>> parameter 2 to be long, string given in /Volumes/RAIDer/webserver/
>>> Documents/dev/stimecard/timecard.php on line 57
>>>
>>>
>>> Here is line 57:
>>>
>>> $timeout = date("m/d/y h:i:s A", $row['timeout']);
>>>
>>>
>>> And the info that is trying to grab from the database is:
>>>
>>> +------------+------------+-------+--------+-------------------+
>>> | timein | timeout | empID | record | Name |
>>> +------------+------------+-------+--------+-------------------+
>>> | 1222354037 | 1222382837 | 1 | 107 | Jason Pruim |
>>> +------------+------------+-------+--------+-------------------+
>>>
>>> Now... the error only happens on line 57... On line 56 there is
>>> the same command except: $timein = date("m/d/y h:i:s A",
>>> $row['timein']);
>>>
>>> And that doesn't cause any errors so I'm at a bit of a loss as to
>>> what to do? I know I can redirect the warning to an error message,
>>> but I don't want to do that... I am trying real hard to write
>>> clean code... And this is my last error...
>>>
>>> It's a total cosmetic thing since it still displays everything
>>> right...
>>>
>>> Any ideas? :)
>>
>> Do a var_dump($row['timeout']) on the line before the one giving
>> the warning to check that it contains what you think it does.
>
>
> Hey Stut,
>
> Thanks for the quick response... You were right... I did a var_dump
> both on $row['timein'] and $row['timeout'] and the error was because
> of the way that I update the records. for time in, I insert a new
> record, for time out, I update the record where timeout= NULL and
> THAT is what was causing the issue... I guess I can just redirect
> that error, ignore it, or come up with a different way to update the
> current record without having to use NULL, or maybe, write a timeout
> timestamp for like midnight on January 1 1955 or something like
> that...

Try "is null" rather than "= null".

-Stut

--
http://stut.net/

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: The 'at' sign (@) variable prefix

2008-10-07T04:54:14Z

>> mike schreef:

>>> Mon, Oct 6, 2008 at 12:17 PM, Daniel Brown <parasane@...
>>> wrote:

>>>>> I will get an error, but if I prefix the value with '@',

>>>>> $query=@$_GET["q"];

>>>> The @ is an error control operator, used to buffer the output
>>>> and store it in a variable - $php_errormsg. It's better to
>>>> write clean, secure code, of course.... but sometimes error
>>>> control is a good thing, too. why not just use:
>>> $query = isset($_GET['q']) ? $_GET['q'] : '';

>>> that way it's always set.

>>> or even better (what I recommend):
>>> $query = filter_input(INPUT_GET, 'q', FILTER_SANITIZE_STRING);

>>> and get an empty string or a sanitized string, depending on if
>>> something exists.

>> Mike's ways are both better than suppressing the error not only
>> because error suppression in general sucks but because it's
>> actually less performant to trigger this kind of error.

> I second that. The @ symbol actually does this:

> @action();

> Becomes:

> $old = ini_set("error_reporting", 0);
> action();
> ini_set("error_reporting", $old);

> So, if you put that a hundred times all over your code, the errors
> might be suppressed but your app is slow too.

Thank you all. As I said, I learned this by osmosis, applying other
people's code. I am not fluent in PHP. That is why I wanted a
reference in the documents. I do not sprinkle the @ symbol through my
code to avoid careful construction, I used it in a specific instance
to deal with an empty query string, over which I had no control. I
will study the alternatives offered here and do some recoding.
--
Dave

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Question about date()

2008-10-07T04:54:02Z

On Oct 7, 2008, at 7:49 AM, Richard Heyes wrote:

>> I am trying real hard to write clean code...
>
> Print it out and stick it in the washing machine... :-)

The way I used to write code I'd have to soak it in bleach for a week
before having a chance of it coming out clean! :P

--

Jason Pruim
Raoset Inc.
Technology Manager
MQC Specialist
11287 James St
Holland, MI 49424
www.raoset.com
japruim@...

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Question about date()

2008-10-07T04:49:21Z

> I am trying real hard to write clean code...

Print it out and stick it in the washing machine... :-)

--
Richard Heyes

HTML5 Graphing for FF, Chrome, Opera and Safari:
http://www.phpguru.org/RGraph

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Question about date()

2008-10-07T04:48:36Z

On Oct 7, 2008, at 7:41 AM, Stut wrote:

> On 7 Oct 2008, at 12:38, Jason Pruim wrote:
>> I am trying to track down an error and can't seem to figure it
>> out... Here is the error out of my log:
>>
>> [Tue Oct 7 07:31:43 2008] [error] PHP Warning: date() expects
>> parameter 2 to be long, string given in /Volumes/RAIDer/webserver/
>> Documents/dev/stimecard/timecard.php on line 57
>>
>>
>> Here is line 57:
>>
>> $timeout = date("m/d/y h:i:s A", $row['timeout']);
>>
>>
>> And the info that is trying to grab from the database is:
>>
>> +------------+------------+-------+--------+-------------------+
>> | timein | timeout | empID | record | Name |
>> +------------+------------+-------+--------+-------------------+
>> | 1222354037 | 1222382837 | 1 | 107 | Jason Pruim |
>> +------------+------------+-------+--------+-------------------+
>>
>> Now... the error only happens on line 57... On line 56 there is the
>> same command except: $timein = date("m/d/y h:i:s A", $row['timein']);
>>
>> And that doesn't cause any errors so I'm at a bit of a loss as to
>> what to do? I know I can redirect the warning to an error message,
>> but I don't want to do that... I am trying real hard to write clean
>> code... And this is my last error...
>>
>> It's a total cosmetic thing since it still displays everything
>> right...
>>
>> Any ideas? :)
>
> Do a var_dump($row['timeout']) on the line before the one giving the
> warning to check that it contains what you think it does.

Hey Stut,

Thanks for the quick response... You were right... I did a var_dump
both on $row['timein'] and $row['timeout'] and the error was because
of the way that I update the records. for time in, I insert a new
record, for time out, I update the record where timeout= NULL and THAT
is what was causing the issue... I guess I can just redirect that
error, ignore it, or come up with a different way to update the
current record without having to use NULL, or maybe, write a timeout
timestamp for like midnight on January 1 1955 or something like that...

Thanks again Stut!

--

Jason Pruim
Raoset Inc.
Technology Manager
MQC Specialist
11287 James St
Holland, MI 49424
www.raoset.com
japruim@...

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Question about date()

2008-10-07T04:41:30Z

On 7 Oct 2008, at 12:38, Jason Pruim wrote:

> I am trying to track down an error and can't seem to figure it
> out... Here is the error out of my log:
>
> [Tue Oct 7 07:31:43 2008] [error] PHP Warning: date() expects
> parameter 2 to be long, string given in /Volumes/RAIDer/webserver/
> Documents/dev/stimecard/timecard.php on line 57
>
>
> Here is line 57:
>
> $timeout = date("m/d/y h:i:s A", $row['timeout']);
>
>
> And the info that is trying to grab from the database is:
>
> +------------+------------+-------+--------+-------------------+
> | timein | timeout | empID | record | Name |
> +------------+------------+-------+--------+-------------------+
> | 1222354037 | 1222382837 | 1 | 107 | Jason Pruim |
> +------------+------------+-------+--------+-------------------+
>
> Now... the error only happens on line 57... On line 56 there is the
> same command except: $timein = date("m/d/y h:i:s A", $row['timein']);
>
> And that doesn't cause any errors so I'm at a bit of a loss as to
> what to do? I know I can redirect the warning to an error message,
> but I don't want to do that... I am trying real hard to write clean
> code... And this is my last error...
>
> It's a total cosmetic thing since it still displays everything
> right...
>
> Any ideas? :)

Do a var_dump($row['timeout']) on the line before the one giving the
warning to check that it contains what you think it does.

-Stut

--
http://stut.net/

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Question about date()

2008-10-07T04:38:32Z

Good morning all!

I am trying to track down an error and can't seem to figure it out...
Here is the error out of my log:

[Tue Oct 7 07:31:43 2008] [error] PHP Warning: date() expects
parameter 2 to be long, string given in /Volumes/RAIDer/webserver/
Documents/dev/stimecard/timecard.php on line 57

Here is line 57:

$timeout = date("m/d/y h:i:s A", $row['timeout']);

And the info that is trying to grab from the database is:

+------------+------------+-------+--------+-------------------+
| timein | timeout | empID | record | Name |
+------------+------------+-------+--------+-------------------+
| 1222354037 | 1222382837 | 1 | 107 | Jason Pruim |
+------------+------------+-------+--------+-------------------+

Now... the error only happens on line 57... On line 56 there is the
same command except: $timein = date("m/d/y h:i:s A", $row['timein']);

And that doesn't cause any errors so I'm at a bit of a loss as to what
to do? I know I can redirect the warning to an error message, but I
don't want to do that... I am trying real hard to write clean code...
And this is my last error...

It's a total cosmetic thing since it still displays everything right...

Any ideas? :)

--

Jason Pruim
Raoset Inc.
Technology Manager
MQC Specialist
11287 James St
Holland, MI 49424
www.raoset.com
japruim@...

Re: How to use MySQL queries...?

2008-10-07T02:48:21Z

>>And is there any effective way to calculate the statistics of comparison
of
>>query execution timings..

For query execution statistics, you need to log slow queries. To do so,
enable following two directives in my.cnf file

long_query_time = 2
log-slow-queries = /var/log/mysql/mysql_slow_query.log

This configuration will log all queries that take more than 2 sec in the
file /var/log/mysql/mysql_slow_query.log

And monitor the logs.

Parsing the logs from human eyes is bit trivial. You can user this
http://www.mysqlperformanceblog.com/files/utils/mysql_slow_log_parser perl
script to parse slow-queries.

- Jignesh

On Tue, Oct 7, 2008 at 10:24 AM, Richard Heyes <richard@...> wrote:

> > Is there any big difference to use PROPEL or any other ORM mapping
> > against basic
> > functions provided by MySQL Extension...?
>
> If it's MySQL you're looking to optimise, then you could also try
> asking on the MySQL discussion list. On the PHP side, the MySQL
> functions are long-winded at best, try simple abstraction. This could
> be as simple as using a small object or set of functions that does a
> lot of the grunt work for, eg:
>
> $results = $db->getAll("SELECT * FROM mysql.user");
>
> Much quicker to write than the equivalent using the PHP functions.
> This does also make switching to another db far easier.
>
> --
> Richard Heyes
>
> HTML5 Graphing for FF, Chrome, Opera and Safari:
> http://www.phpguru.org/RGraph
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

Re: How to use MySQL queries...?

2008-10-07T02:24:32Z

> Is there any big difference to use PROPEL or any other ORM mapping
> against basic
> functions provided by MySQL Extension...?

If it's MySQL you're looking to optimise, then you could also try
asking on the MySQL discussion list. On the PHP side, the MySQL
functions are long-winded at best, try simple abstraction. This could
be as simple as using a small object or set of functions that does a
lot of the grunt work for, eg:

$results = $db->getAll("SELECT * FROM mysql.user");

Much quicker to write than the equivalent using the PHP functions.
This does also make switching to another db far easier.

--
Richard Heyes

HTML5 Graphing for FF, Chrome, Opera and Safari:
http://www.phpguru.org/RGraph

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

How to use MySQL queries...?

2008-10-07T02:12:45Z

Hello All, I am here with one more doubt....
Now I want to minimize my response time for a query..Can anybody tell me
...,

Is there any big difference to use PROPEL or any other ORM mapping
against basic
functions provided by MySQL Extension...?
And is there any effective way to calculate the statistics of comparison of
query execution timings...?

With Regards,
Hemant Patel

Re: The 'at' sign (@) variable prefix

2008-10-07T00:53:52Z

Jochem Maas wrote:

> mike schreef:
>
>> Mon, Oct 6, 2008 at 12:17 PM, Daniel Brown <parasane@...> wrote:
>>
>>
>>>> I will get an error, but if I prefix the value with '@',
>>>>
>>>> $query=@$_GET["q"];
>>>>
>>> The @ is an error control operator, used to buffer the output and
>>> store it in a variable - $php_errormsg.
>>>
>>> It's better to write clean, secure code, of course.... but
>>> sometimes error control is a good thing, too.
>>>
>> why not just use:
>> $query = isset($_GET['q']) ? $_GET['q'] : '';
>>
>> that way it's always set.
>>
>> or even better (what I recommend):
>> $query = filter_input(INPUT_GET, 'q', FILTER_SANITIZE_STRING);
>>
>> and get an empty string or a sanitized string, depending on if something exists.
>>
>>
>
> Mike's ways are both better than suppressing the error not only because error
> suppression in general sucks but because it's actually less performant to trigger
> this kind of error.
>

I second that. The @ symbol actually does this:

@action();

Becomes:

$old = ini_set(“error_reporting”, 0);
action();
ini_set(“error_reporting”, $old);

So, if you put that a hundred times all over your code, the errors might
be suppressed but your app is slow too.

--

Aschwin Wesselius

/'What you would like to be done to you, do that to the other....'/

Re: Prefered Method for User authetification on VHosts

2008-10-06T23:34:42Z

Michelle Konzack wrote:

> Currently I have
> [snip]

OK, so a plain file-password authentification. That's fine.

> I like to know, whether this is good enough or is there a
> better solution?

Good enough depends entirely on your security requirements, i.e. how
safe do you need the authenticated access to be? Are you protecting
something that is valuable to others? Etc etc.

/Per Jessen, Zürich

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Best Search Algorithm for Millions of record

2008-10-06T21:52:42Z

It will be a Postgres SQL Database and Fields will be like descriptive as
well as Area of land,of street etc specific...
With Regards,
Hemant Patel

On Mon, Oct 6, 2008 at 8:30 PM, Micah Gersten <micah@...> wrote:

> What type of data is in the fields? Also, which database engine?
>
> Thank you,
> Micah Gersten
> onShore Networks
> Internal Developer
> http://www.onshore.com
>
>
>
> Hemant Patel wrote:
> > I have couple of tables with 1,60,00000 records and now i need to
> > search the records based on some crieteria...so which will help me...?
> >
> >
> > On Mon, Oct 6, 2008 at 12:30 PM, Micah Gersten <micah@...
> > <mailto:micah@...>> wrote:
> >
> > The question is, what are you searching for in the records?
> >
> > Thank you,
> > Micah Gersten
> > onShore Networks
> > Internal Developer
> > http://www.onshore.com
> >
> >
> >
> > Hemant Patel wrote:
> > > My question is Whether I should go for Full Text Based search or
> > Database
> > > Search...?And is there algorithm in php which can help me in
> > this case...?
> > >
> > >
> >
> >
>

Re: Re: db_* => pg_/my_/ifx_* ?

2008-10-06T20:06:05Z

On Wednesday 01 October 2008 10:44:29 am Michelle Konzack wrote:

> Am 2008-09-30 19:58:03, schrieb Ashley Sheridan:
> > Hi Michelle, I'm not sure exactly what it is you're after. Are you
> > looking for software that will allow you to develop applications that
> > are database agnostic?
>
> What is "agnostic"?
>
> If you mean "database independant", the answer is yes.
>
> Most Applications do not need complex database specific queries and
> generaly I need only
>
> db_connect($server, $port, $db, $user, $pass)
> 1) using pconnect if possibel
> 2) there are already significant differences
> between pgsql and mysql
> db_error()
> 1) Works different between pgsql and mysql and ifx
>
> db_close($handle)
> 1) Works afaik with all databases the same way
>
> db_getarray() -> return array from SELECT
> 1) Hell of SELECT FROM WHERE...
>
> db_insert($handle, $table, $what, $where)
> db_update($handle, $table, $what, $where)
> db_delete($handle, $table, $what, $where)
> 1) Sometimes heavy differences for ALL databases...

PHP does offer a unified API: PDO.

http://www.php.net/pdo

It offers a lot of good features, although it doesn't abstract out the SQL
itself or some more annoying design limitations of some databases (like
BLOB/CLOB handling in Postgres or Oracle).

I actually just recently finished (OK, it's not done yet but the bulk of it
is) implementing a PDO-based fully OOP DB abstraction layer for Drupal 7.
It's actually quite slick, but is still somewhat Drupal dependent right now
due to the need to know the table structure ahead of time for non-MySQL
databases. Eventually I want to split it out to its own standalone library,
but it's not at that point yet. (And due to the weirdness that is SQL, it's
actually a lot harder than you think to do such a thing well, especially
WHERE clauses and the excitement that are Merge queries. Tip: A simple array
is NOT sufficient for all of what WHERE can do.)

--
Larry Garfield
larry@...

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Drupal 6

2008-10-06T19:56:59Z

On Monday 06 October 2008 9:19:03 am Nathan Rixham wrote:

> So as part of my "new job" I've been asked to research and indeed get
> used to drupal 6; recon I guess.
>
> I've been using it for the past week; figured out all the best modules
> to do everything I want etc etc.
>
> q: do you use drupal 6
> sub-q: and love it
> sub-q: and would rather not
> sub-q: have had to move away due to lack of functionality
> sub-q: have found it actually didn't speed up but rather slowed development
> sub-q: constantly need to write your own php to get it to do what you want.
>
> Thanks for all responses, and please no "go to drupal forums" responses,
> that's like asking microsoft for honest feedback on microsoft products;
> I need the feedback from you skilled php programmers.
>
> ps: personally I've found it's looks v powerful and been a learning
> curve setting it all up + researching modules; but finding it "not
> great" for actually making real world sites!
>
> Many Regards

Well, I'm biased, too, as I'm a Drupal core developer. However, I also use it
professionally to build web sites for clients, mostly institutional
non-profits (museums, universities, etc.), and moving to Drupal was one of
the best decisions my company has ever made. You can't make Drupal do
everything, but you can come very close to "everything" if you know how to
work with it. :-)

In general, if you're not using Views and CCK, you're doing something wrong.
Seriously, that is The Way Of The Future.

You also need to not fall victim to the temptation to "just do it yourself",
especially when it comes to theming. Drupal's power comes from the fact
that, when you get down to it, it really is smarter than you in many ways if
you just learn to trust it. Odds are that whatever you want to do, there's
already a module that does 80% of it or more or else a way to piece together
existing modules to get 90% of it or so. I highly recommend these articles,
written by a colleague of mine:

http://www.palantir.net/blog/sustainable-markup-how-be-a-themer-drupal
http://www.palantir.net/blog/graycor-drupal-theming-works

Along the same lines, use the Zen theme as a base theme (as discussed in those
articles). Again, learn to trust it and don't try to rewrite all of its CSS
and change class names to what you're used to, etc. It's CSS is *really*
solid, and takes care of so much for you it's not even funny. (Disclaimer:
Zen was largely written by another colleague of mine.)

I've seen the same pattern in many people. They try to think that their code
is better than whatever Drupal happens to do, so they fight it and try to do
things "their way". And they waste time and produce something inflexible.
Eventually they realize that wait, Drupal really is that flexible and can do
what you want it to do, if you allow yourself to trust Drupal and go "with
the grain" rather than fighting it. Then you produce magic.

A smattering of Drupal sites that my company has done recently:

http://www.imamuseum.org/ (writeup: http://drupal.org/node/188312)
http://www.artic.edu/aic/collections (writeup: http://drupal.org/node/279485)
http://www.herron.iupui.edu/
http://artsci.wustl.edu/
http://www.firstbt.com/
http://www.virtualk.org/

For us, we no longer ask "so can Drupal do this?" We go straight to "so how
can we do this with Drupal?" because we are already confident that the answer
to the first question is "Yes we can". (Obama reference not intentional.)

--
Larry Garfield
larry@...

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: The 'at' sign (@) variable prefix

2008-10-06T18:16:06Z

mike schreef:

> Mon, Oct 6, 2008 at 12:17 PM, Daniel Brown <parasane@...> wrote:
>
>>> I will get an error, but if I prefix the value with '@',
>>>
>>> $query=@$_GET["q"];
>> The @ is an error control operator, used to buffer the output and
>> store it in a variable - $php_errormsg.
>
>> It's better to write clean, secure code, of course.... but
>> sometimes error control is a good thing, too.
>
> why not just use:
> $query = isset($_GET['q']) ? $_GET['q'] : '';
>
> that way it's always set.
>
> or even better (what I recommend):
> $query = filter_input(INPUT_GET, 'q', FILTER_SANITIZE_STRING);
>
> and get an empty string or a sanitized string, depending on if something exists.
>

Mike's ways are both better than suppressing the error not only because error
suppression in general sucks but because it's actually less performant to trigger
this kind of error.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Required files not being parsed properly...

2008-10-06T17:51:53Z

On Mon, Oct 6, 2008 at 7:28 PM, Stephen Johnson
<stephen@...> wrote:

> OK .. I am upgrading to PHP5 on a clients box, and after doing so I have
> run into the problem that files that get brought in by a require statement,
> or include, end up just getting dumped to the browser as text..
>
> For instance :
>
> require("/home/tnr/incs/tnr_db.php");
> $db = new mysql();
>
> Produces what you see here :
>
> http://www.thumbnailresume.com/index.html?allow=1
>
> Any one have any thoughts on what is going on?
>
> --
> Stephen Johnson c | eh
> The Lone Coder
>
> office: 562.366.4433
> fax: 562.278.0133
>
> http://www.thelonecoder.com
> continuing the struggle against bad code
>
> http://www.fortheloveofgeeks.com
> I¹m a geek and I¹m OK!
> --
>
>
>
>

$user_id = $_COOKIE['user_id'];

$logFile = "/home/tnr/query_logs/tnr.".$user_id.".query.log";

uh oh...

Re: Required files not being parsed properly...

2008-10-06T16:51:48Z

Stephen Johnson wrote:

Well, if you look at the source for the page, you will notice that you have a
<? at the top of the file. The default for PHP5 is to disable the
short_open_tag it is set to off by default. PHP4 was set to On

Change that restart apache. You should be good to go.

--
Jim Lucas

"Some men are born to greatness, some achieve greatness,
and some have greatness thrust upon them."

Twelfth Night, Act II, Scene V
by William Shakespeare

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Required files not being parsed properly...

2008-10-06T16:28:46Z

OK .. I am upgrading to PHP5 on a clients box, and after doing so I have
run into the problem that files that get brought in by a require statement,
or include, end up just getting dumped to the browser as text..

For instance :

require("/home/tnr/incs/tnr_db.php");
$db = new mysql();

Produces what you see here :

http://www.thumbnailresume.com/index.html?allow=1

Any one have any thoughts on what is going on?

--
Stephen Johnson c | eh
The Lone Coder

office: 562.366.4433
fax: 562.278.0133

http://www.thelonecoder.com
continuing the struggle against bad code

http://www.fortheloveofgeeks.com
I¹m a geek and I¹m OK!
--

Re: How to capture origional client machine _directory_ and file name on uploads?

2008-10-06T15:07:40Z

On Mon, 2008-10-06 at 12:35 -0400, J. Hill wrote:

> [Sorry Nathan.]
>
> Yes, I should have said "autopopulate". And from what I have found,
> you're right; it does appear java applets can do it, but I had hoped to
> avoid that option.
>
> > Eric Butera -- The file upload will only exist in the specified temp
> > directory . . ..
> Perhaps I should have explained more. If they make an error, I only
> wanted to autopopulate the field with the correct value rather than
> tracking the temp file. However, it appears your solution may be the
> best solution, other than using java applets. Messy. Bummer.
>
> > Richard Heyes -- Tes, keep your pesky nose out . . .
> I would love to keep my nose out ;-) Unfortunately, the request has
> been made by our paying clients who are the ones uploading the files.
>
> While I do appreciate the security issues, there are so many other
> vulnerabilities, the basic autopopulate concept seems to add very little
> to the mix.
>
> Thanks to all for the input.
>
> Jeff
>
>
> Nathan Rixham wrote:
> > J. Hill wrote:
> >> This should be trivial, but apparently not -- or maybe I just need
> >> more caffeine. My searches have come up empty.
> >>
> >> I am trying to get not only the original file name on uploads, but
> >> also the original directory on the client machine as well.
> >>
> >> The purpose is for users who make a mistake on another part of the
> >> form; when the form is returned for them to complete properly, all of
> >> the correct values are automatically filled in. That's trivial in
> >> most instances, but I'm not finding a solution for file uploads.
> >>
> >> This seems like a common need. Any suggestions?
> >>
> >> Thanks in advance,
> >>
> >> Jeff
> >>
> >>
> >
> > AFAIK that info is outside the security sandbox of web browsers; just
> > like you can't resend the file or autopopulate what file you want them
> > to upload.
> >
> > only way is to use a third party browser extension or app; java
> > uploader or such like and you may have some luck.
> >
>

This isn't possible, as people have explained, for security reasons.
What you can do though, is capture and semi-process the file uploaded in
the unsuccessful form submission and keep it in a sandbox until the form
gets submitted correctly. This would get round your problems, but you
will need a clean-up method to remove files that get left behind by
people giving up filling in the form correctly.

Ash
www.ashleysheridan.co.uk

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: AJAX and PHP

2008-10-06T15:03:36Z

On Mon, 2008-10-06 at 17:09 +0200, Alain Roger wrote:

> And AFAIK it does not work on linux platform
>
> On Mon, Oct 6, 2008 at 3:36 PM, Wolf <lonewolf@...> wrote:
>
> > 
> > > yes, flex is "flash for developers"; the main language is AS3 and it
> > > outputs swf's; flex is basically a program which allows you to use mix
> > > of pre-made ui elements & classes, css and AS3 to quickly make great
> > RIA's.
> >
> > Yup, but you have to have flash enabled. But some of us don't except for
> > specific sites due to ads being swfs as well.
> >
> > Wolf
> >
>
>

It can be made to work, but there is a lot of messing about. Not tried
it myself, but I have spoken to some people on the Papervision team who
have done it.

Ash
www.ashleysheridan.co.uk

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Re: db_* => pg_/my_/ifx_* ?

2008-10-06T14:55:26Z

On Wed, 2008-10-01 at 17:44 +0200, Michelle Konzack wrote:

I think you may need to write these wrappers yourself if you need them.
I don't know of any library that will provide these, and most PHP
systems I've used have their own like this as well.

Ash
www.ashleysheridan.co.uk

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Re: php framework vs just php?

2008-10-06T13:59:23Z

what is your framework??? uacaman.

i'm using symfony, but i'm reading the book. it's hard but there are so many
things you can do easily with symfony!

2008/10/7 uaca man <uacaman@...>

> To be or not to be dump it your choice.
>
> My framework it not just awesome it is super awesome.
>
> Angelo
>
> 2008/10/6 Dan Joseph <dmjoseph@...>:
> > On Mon, Oct 6, 2008 at 1:01 PM, Jason Pruim <japruim@...> wrote:
> >
> >>
> >> But... Which framework is better? :P
> >>
> >>
> >>
> >>
> > Oh my.. now we're gonna get all those guys popping back up telling us how
> > dumb we are and how awesome their frameworks are again!
> >
> > --
> > -Dan Joseph
> >
> > www.canishosting.com - Plans start @ $1.99/month.
> >
> > "Build a man a fire, and he will be warm for the rest of the day.
> > Light a man on fire, and will be warm for the rest of his life."
> >
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

--
Atte
Farid H. López Durán

"La naturaleza del hombre es tal que puede conseguir la perfección
únicamente cuando
trabaja para el bienestar y la dignidad de sus conciudadanos". Karl Marx

Re: The 'at' sign (@) variable prefix

2008-10-06T12:43:33Z

Mon, Oct 6, 2008 at 12:17 PM, Daniel Brown <parasane@...> wrote:

>> I will get an error, but if I prefix the value with '@',
>>
>> $query=@$_GET["q"];
>
> The @ is an error control operator, used to buffer the output and
> store it in a variable - $php_errormsg.

> It's better to write clean, secure code, of course.... but
> sometimes error control is a good thing, too.

why not just use:
$query = isset($_GET['q']) ? $_GET['q'] : '';

that way it's always set.

or even better (what I recommend):
$query = filter_input(INPUT_GET, 'q', FILTER_SANITIZE_STRING);

and get an empty string or a sanitized string, depending on if something exists.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: The 'at' sign (@) variable prefix

2008-10-06T12:17:28Z

On Mon, Oct 6, 2008 at 3:03 PM, Crash Dummy <gmane@...> wrote:
> I learned through osmosis that I could use the '@' sign to prevent an
> error with an uncertain variable. For example, if there is no $_GET[]
> value in this line,
>
> $query=$_GET["q"];
>
> I will get an error, but if I prefix the value with '@',
>
> $query=@$_GET["q"];

The @ is an error control operator, used to buffer the output and
store it in a variable - $php_errormsg.

Check it out:
http://php.net/manual/en/language.operators.errorcontrol.php

It's better to write clean, secure code, of course.... but
sometimes error control is a good thing, too.

--
</Daniel P. Brown>
More full-root dedicated server packages:
Intel 2.4GHz/60GB/512MB/2TB $49.99/mo.
Intel 3.06GHz/80GB/1GB/2TB $59.99/mo.
Intel 2.4GHz/320/GB/1GB/3TB $74.99/mo.
Dedicated servers, VPS, and hosting from $2.50/mo.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: The 'at' sign (@) variable prefix

2008-10-06T12:10:03Z

Documentation is at:
http://br.php.net/manual/en/language.operators.errorcontrol.php

Angelo

2008/10/6 Crash Dummy <gmane@...>:

> I learned through osmosis that I could use the '@' sign to prevent an
> error with an uncertain variable. For example, if there is no $_GET[]
> value in this line,
>
> $query=$_GET["q"];
>
> I will get an error, but if I prefix the value with '@',
>
> $query=@$_GET["q"];
>
> and no value is available, a null string is returned, and no error is
> generated.
>
> This is great, but I'd like to see it in writing. I can't find this
> feature in the documentation. Can someone steer me to it?
> --
> Dave
>
>
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Re: php framework vs just php?

2008-10-06T12:08:21Z

To be or not to be dump it your choice.

My framework it not just awesome it is super awesome.

Angelo

2008/10/6 Dan Joseph <dmjoseph@...>:

> On Mon, Oct 6, 2008 at 1:01 PM, Jason Pruim <japruim@...> wrote:
>
>>
>> But... Which framework is better? :P
>>
>>
>>
>>
> Oh my.. now we're gonna get all those guys popping back up telling us how
> dumb we are and how awesome their frameworks are again!
>
> --
> -Dan Joseph
>
> www.canishosting.com - Plans start @ $1.99/month.
>
> "Build a man a fire, and he will be warm for the rest of the day.
> Light a man on fire, and will be warm for the rest of his life."
>

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

The 'at' sign (@) variable prefix

2008-10-06T12:03:37Z

I learned through osmosis that I could use the '@' sign to prevent an
error with an uncertain variable. For example, if there is no $_GET[]
value in this line,

$query=$_GET["q"];

I will get an error, but if I prefix the value with '@',

$query=@$_GET["q"];

and no value is available, a null string is returned, and no error is
generated.

This is great, but I'd like to see it in writing. I can't find this
feature in the documentation. Can someone steer me to it?
--
Dave

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Re: Re: php framework vs just php?

2008-10-06T11:28:24Z

On Mon, Oct 6, 2008 at 1:01 PM, Jason Pruim <japruim@...> wrote:

>
> But... Which framework is better? :P
>
>
>
>
Oh my.. now we're gonna get all those guys popping back up telling us how
dumb we are and how awesome their frameworks are again!

--
-Dan Joseph

www.canishosting.com - Plans start @ $1.99/month.

"Build a man a fire, and he will be warm for the rest of the day.
Light a man on fire, and will be warm for the rest of his life."

RE: NTLM Auth For grabbing data.

2008-10-06T11:11:39Z

> -----Original Message-----
> From: DJ Necrogami [mailto:djnecrogami@...]
> Sent: Monday, October 06, 2008 12:41 PM
> To: fw-general@...; php-general@...
> Subject: [PHP] NTLM Auth For grabbing data.
>
> Content-Length 1656
> Content-Type text/html
> Server Microsoft-IIS/6.0
> WWW-Authenticate Negotiate NTLM
> X-Powered-By ASP.NET
> MicrosoftSharePointTeamServices 12.0.0.6023
>
> I'm needing to authenticate against that with php. Is this possible?
> I can manually provide the details but the http auth script only
> allows basic auth not NTLM.
>
> I'm not trying to have the user authenticate against it. I'm trying to
> get the server to authenticate against NTLM because i'm trying to grab
> and parse html pages.
>
> If anyone can help thank you.
>
> If there is a method of doing this easily in php normally please let
> me know. ZF or PHP either way.

STFW:

http://blog.thinkphp.de/archives/125-Accessing-NTLM-secured-resources-wi
th-PHP.html
http://forums.whirlpool.net.au/forum-replies-archive.cfm/630826.html
http://bytes.com/forum/thread9108.html
http://www.experts-exchange.com/Web_Development/Web_Languages-Standards/
PHP/Q_21586189.html
http://rabaix.net/articles/2008/3/13/using-soap-php-with-ntlm-authentica
tion
http://siphon9.net/loune/2007/10/simple-lightweight-ntlm-in-php/

Todd Boyd
Web Programmer

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Nabble - PHP - General

Re: Required files not being parsed properly...

Re: Required files not being parsed properly...

Re: Re: php framework vs just php?

Re: $_SERVER["REMOTE_ADDR"] returning ::1

Re: Question about date()

Re: Question about date()

Re: The 'at' sign (@) variable prefix

Re: Question about date()

Re: Question about date()

Re: Question about date()

Re: Question about date()

Question about date()

Re: How to use MySQL queries...?

Re: How to use MySQL queries...?

How to use MySQL queries...?

Re: The 'at' sign (@) variable prefix

Re: Prefered Method for User authetification on VHosts

Re: Best Search Algorithm for Millions of record

Re: Re: db_* => pg_*/my_*/ifx_* ?

Re: Drupal 6

Re: The 'at' sign (@) variable prefix

Re: Required files not being parsed properly...

Re: Required files not being parsed properly...

Required files not being parsed properly...

Re: How to capture origional client machine _directory_ and file name on uploads?

Re: AJAX and PHP

Re: Re: db_* => pg_*/my_*/ifx_* ?

Re: Re: php framework vs just php?

Re: The 'at' sign (@) variable prefix

Re: The 'at' sign (@) variable prefix

Re: The 'at' sign (@) variable prefix

Re: Re: php framework vs just php?

The 'at' sign (@) variable prefix

Re: Re: php framework vs just php?

RE: NTLM Auth For grabbing data.

Re: Re: db_* => pg_/my_/ifx_* ?

Re: Re: db_* => pg_/my_/ifx_* ?