scootstah

You will need to implement them separately. But do consider making a registration for only your site. Personally I hate sites that have these shared logins. I don't want to login to every site on the web with my Facebook.

No no no. You want to turn register globals OFF. It is a huge security concern.

You want some kind of template system. You define your static pages (like your header and footer) and then include that pages template. Something like: function load_template($template, $data=array()) { // does the template exist and is readable? if (is_readable($template)) { // turn data array into variables extact($data); // fetch the template require $template; } } Then your templates directory may look like: templates/ header.php footer.php somepage.php Your header and footer files are basically the entire layout minus that specific page's content. somepage.php would look like: <?php require 'header.php'; ?> Content goes here. We can use variables that we passed in earlier. <?php echo $foo; ?> <?php require 'footer.php'; ?> And usage: load_template('somepage.php', array('foo' => 'bar'));

Just because AJAX is used doesn't mean it depends on Javascript being turned on. Um, indeed it does. You cannot create Ajax without JavaScript. I think scootstah was just trying to say that in order to use AJAX, you don't need to leave non-JS users in the lurch. Indeed. AJAX is mostly used for user convenience. There's no reason you can't add regular request functionality, which my example did just that. If the Javascript didn't run they were simply linked to a page which would increase the hit.

Why not give it your best effort and then post it for critique?

That is session hijacking and is entirely different.

Just because AJAX is used doesn't mean it depends on Javascript being turned on.

explode() needs a string not an array.

Drop downs work perfectly fine on my Android phone.

Do you mind sharing how you think you can beat it?

Right, my bad. By the way, splitting the salt like that really doesn't accomplish anything. It is no more secure than standard salting. Security through obscurity isn't security.

Define "doesn't work". Also, where does $email come from? You don't have to fetch results with this query, you can just check if any were found with mysql_num_rows(). $check_email=mysql_query("SELECT * FROM userlist WHERE email ='".$email."' "); if (mysql_num_rows($check_email) > 0) { // email found }

I don't see why this would ever be necessary for legitimate purposes. You are either making a very bad design decision or you are trying to do something malicious.

I believe it is /opt/lampp/htdocs (to the document root)

Actually it should be something like: <a href="girl.php?id=t1&action=increment" onclick="in1();"><img src="t1.png" id="t1" /></a> <a href="girl.php?id=t2&action=increment" onclick="in2();"><img src="t2.png" id="t2" /></a> That way it works for people without Javascript.

Exactly. Instead of spending 300 man-hours on your own "next Facebook", get hired to make someone else's. Who cares if it fails, you still got paid several thousand dollars - which is several thousand dollars more than you got paid for your own failure.

There's not a whole lot left that hasn't been done to some degree. So, find a niche for something. Figure out who your competition is, and do it better. Read reviews about your competition and find out all the things people don't like about it or want to see in a future release. Include your competitions features and improve on them if possible. Find ways to make your application easier and more enjoyable to use. You have to figure out the idea for the project yourself. That way, it will be something you want to do and are passionate about it.

I have been searching for this as well. Unfortunately I haven't really come up with anything that hasn't already been beaten to death. If you just want something to do for self pride and the learning experience and don't really care if anyone ever sees it, then make a framework or a CMS. They are an excellent way to learn some of the more advanced PHP and database techniques. Download all of the common frameworks (CodeIgniter, Kohana, Fuel, Cake...) and spend a week (or more if you need) reading all of the code and getting a good understanding of how each works and how they differ. Then take ideas from all of them and create your own. Do the same for a CMS if you prefer. You can also find an existing open source application and contribute code to it. There are a plethora of forum software, frameworks, content management systems, blog software that need bug fixes and such. Look around on github for projects to work on.

People say ads suck but they really don't. Sure you can't just slap some AdSense on your site and expect to roll in the cash, but there are many big name blogs out there that make a killing from ads.

Anything that goes into a database needs to be escaped.

https://github.com/akzhan/jwysiwyg + http://jqueryui.com/demos/draggable/

Can I ask why you aren't using CSS height and width properties?

So right after this line: $Recordset1 = mysql_query($query_limit_Recordset1, $theconnect) or die(mysql_error()); you need to do if (mysql_num_rows($Recordset1) > 0) { // found } else { // not found }

This is basically a CSRF attack, even if not for evil purposes. So don't expect anything reliable.

Should do what you want: http://sperling.com/examples/menuh/