redbullmarky

hmmm again, not 100% sure on this one, just throwing an idea your way. it might not be 100% reliable (since headers can be changed/spoofed, etc) but your php file that retrieves the MP3 file could check to make sure that it's not being called directly (HTTP_REFERER, i think) and refuse access based on that. otherwise, the general feeling, from a quick google search, is that it's not possible to secure it 100%. http://forums.winamp.com/showthread.php?threadid=250723 however, a flash solution like myspace has makes it a little trickier for the average joe.

1) still feel that too many options in your navigation - admittedly not as many as in your current site, but i reckon you could trim that down a bit. 2) nav still not good. have a look at http://www.bbc.co.uk/news - look at their nav. plain/simple, but effective - just to give you an idea. 3) bottom banner is too prominent, making things look a little bottom heavy. try lightening it up to something more like your logo, and reducing the size of the text. 4) in some ways (possibly due to the footer as mentioned above) your logo now looks kinda 'huddled' in the corner, whilst the rest of the width of the screen is plain empty. maybe pulling this across the full width of the screen maybe better? 5) "Client Legalities" worries me. maybe you should choose a better term. 6) Thoughts and Guidelines sounds like it's gonna be an excuse for a page of waffle. It's probably not necessary. 7) do you need an 'About' me link when there are so many other links that are 'about you'? alternatively, try putting some of the other links WITHIN the 'About Me' section what i'm trying to get at - don't let it get overblown with content like your current site is. Keep it simple and to the point.

[quote author=businessman332211 link=topic=111680.msg453150#msg453150 date=1161095605] Here is what I came up with for my actual framework. I use the same master folder for every site I build. Within the function pages, I have a function I have built, or I am building, that checks for the location it's present at.  Every site that I have approved it to work on is listed there, the one's that are not, are not. I ahve the list actually on my own website I have the list setup in a javascript file. So the php, will open that javascript file off my server(so no-one can mess with it), with a list of domains I know are suppose to have my master folder on there server. I spread this function throughout my pages, so when someone visit's the site, it run's that function, which checks the javascript file on my server, and pulls out the list of accepted domains. It checks the domains to make sure it matches, if it's not, it deletes my configuration folder from there website, it run's an uninstaller, with that it checks and chmod's the directories', and files, then it deletes all the files, then the folders associated with my website. Thsi is how my program works.  Or will work, I have been working on that lately.  Then anytime I know a new domain is getting it put in, or I am, I put that domain into my javascript file, and that's it. [/quote] **scratches head** sounds a little risky - what happens if your site is ever down for what ever reason? your clients' site would go down too. i like the idea of complete self-reliance. i recently incorporated google maps into a project, and on a few occasions google maps stopped working (not very often) or slowed down (more common), so did my site. @printf, you're probably right to the most part - however, i think encoding part of the application would at least enable you to put certain methods in place to protect you, but was wondering what the implications of encoding part of a project would be (other than the client requiring Zend Optimiser or whatever) - in terms of being asked to do a job and giving part of it encrypted. I agree somewhat that it would depend on the client you're doing the work for - I guess it's when the time comes for that client to have more work done on the site with another developer. cheers

[quote author=businessman332211 link=topic=111767.msg453287#msg453287 date=1161110824] That's only for the admin panel. It's just for what I see when I am in the administration panel. [/quote] doesn't matter. you asked for thoughts on it. tis a good habit to get into to make the admin panel look good, too - otherwise you leave yourself open to sloppiness and excuses. most of the time, my admin panels are pretty much a case of using the same template/css/scripts, etc. makes things much easier to put together, too and don't take up more time than it needs to. taking the time out to design a new layout/template for the admin panel shows you care about what it looks like. cheers

hmm not too bad! it needs a bit of pulling together and a general tidy up - notably the layout in the main content area, and you could use a better font for the links at the top (Login, etc). otherwise, it's ok on first impressions. it could also do with the navigation giving some sort of clue to the current page - ie, leaving it on or something. i actually like your navigation rollovers though...

http://www.google.co.uk/search?hl=en&q=vcard+php good luck

hmmm i'm not 100% clued up on these, but each time i've seen an MP3 playing or a video or whatever, it seems to use an m3u/m4u file, which i believe is a link to an mpeg file rather than the file itself. maybe worth looking up m3u/m4u in google

yes - just use two (or even more) handles for each DB you're connecting to. [code] $first_db = mysql_connect('localhost', 'mysql_user', 'mysql_password'); $second_db = mysql_connect('localhost', 'mysql_user2', 'mysql_password2'); [/code] and use them as normal.

it's awful. stick to the others.

number 4 is awful, something about 2 is not good but cant put my finger on it. it's between 3 and 5, if i had to choose. 3) is quite clean. maybe needs a touch of colour to liven it up a little. 5) too red (or disregarding the colour, too monotone). you need something else to break it up. some may hate this one, but i love bright colours when used properly. however, i'm not keen on your nav. a bit too 'text' for me.

dunno about other browsers, but there's a break in one of your bars. I'm on Safari (Mac) here. i've attached screenshot. [attachment deleted by admin]

yeah. i mean it's not like their site cant be changed by a future developer if the documentation is up to scratch but i guess it's about getting regognition/permission for use of something that could give others a jump up. sure, that's not in the spirit of open source - and i'm all for open source, etc, but it's about protecting your bread and butter.

hmm ok. on one hand though, surely encoding part of your framework to protect it would be no different to PHP itself being 'compiled' or using 3rd party executables? on the other hand, i see the point about them paying for a package. as for your second question - is this type of 'phoning home' practice legal? is there any EULA that cover things like protecting part of your package?

if a user is able to upload a PHP file, then your MP3's will only be one of your worries, so always important to filter ANYTHING that a user can send to your server (get/post/cookie/files). what akitchen stated in his example will do the job nicely, however it just needs for you to send the correct header before echo'ing the contents. not sure what the MIME type is for MP3's (i think it has a few variations) but i always personally grab the MIME type from the $_FILES array when a user uploads the file and store it all in my database, and then: [code] <?php header("Content-type: $mimetype"); echo $contents; ?> [/code] so in the event of a JPEG, it might be translated to: header("Content-type: image/jpeg") it takes a bit of fiddling to get it working for all sorts, but it's definitely a much safer way than storing anything in your web root.

hmmm interesting. if i was critiquing on what i saw first off, i'd say it was a little plain but ok. the idea struck me more than anything else. my biggest problem came when i tried to test it out and found nothing. sure, it's not established yet so content is gonna be a bit slim - but until it has content, all it really is is a page with a few text elements and an input box on it. your use of the <font> HTML tag doesnt do much for my confidence in a coding resource either as I'm pretty sure that was deprecated ages ago. however, i think the idea could take off (assuming that it's unique). as the results are (at the moment) limited, i think there needs to be more "prompters" to work more with what the user types - even giving suggestions on content that the user [i]may[/i] be interested in based on what they type, [i]ala[/i] google's "Did you mean ...." your 'points' system is a pretty cool way of handling things. Be interesting to see much more, but as it stands it's a bit of an empty shell. [b]edit:[/b] whoops my bad - overlooked the tip to search 'php'. still, even when i did, i think some more work could  be done to the way things are served. you could learn a lot from google (and without necessarily ripping them off), but i think you've got something going here that could be good and useful. hope that helps cheers Mark

(sidenote: bidgeir, can you wrap your code in "code" tags just to make it a little easier to read?)

[quote author=neylitalo link=topic=111547.msg452783#msg452783 date=1161027234] Ober, you've made a convert out of me. :) [/quote] and almost me too. Might as well call it Obera for all the work you've done to convince people around these parts (ok, that was lame :) ). FF still my weapon of choice. Opera second place on both PC and Mac (after Safari). With the ability to change the scrollbars (IE) and the autoscroll (FF), I wonder how long it takes for MySpace to launch MyBrowser where you can customise the whole shebang beyond comprehension? (if that idea ever takes off, please remember - you heard it here first. I think)

hi all i have a question aimed at those who've developed huge libraries of scripts/frameworks. if you develop a framework, odds are that you'll be using it for client projects. now, there's nothing really stopping a client using your framework or passing it on to other developers to use, meaning that effectively someone else is getting a jump up off the back of your hard work. does anyone take any measures in this sort of case, to make sure that certain parts of the code remain your  copyright and 'closed source'? is it even possible to retain any form of copyright once you've handed a paid project over to the client? is it acceptible to 'encrypt' the framework part of the code but leave the project-specific code as it is? (and please, this isn't a topic aimed at provoking the 'open-source police' who think that everything should be free :) ) cheers

personally (and not a thoroughly researched statement) I can't help thinking that ruby (notably the full monty, ie Ruby on Rails) is one of those "Web 2.0 bandwagon" things. Like AJAX. Now, AJAX has been very useful to me in my development for little bits and pieces. But very often i see sites and examples that use AJAX for the sake of using it, even though the same thing could be achieved without it with no noticable difference for the user. Ruby seems to be the same. I see plenty of places where people put little RoR demos on there and scream from the top of the mountains "hey, i use RoR!". I personally need some more convincing on this one. If anything, at least it's made people think about "ideal development environments" and new ways of getting work done quicker, but this one (unlike AJAX) is a bandwagon i'm not gonna jump on. steelman summed it up: [code] It can do something things with simplicity that is difficult to do in PHP...but then again, it can go vise versa on that as well. [/code]

after waiting nearly 40s for the page to finish loading (fast connection here), it didnt look so bad, but i was immediately greeted with a popup alert box and a popup to an adult site. also, despite the validation buttons, it doesnt validate. i'd have given it more time to critique but the popups and load times were really driving me nuts. cheers

hmmm i actually like them as they are. sure, they cause problems with code boxes but i'm sure that's a "teething problem" that'll be sorted out rather than a permanent side effect. forums with them after every so many posts tend to get a little OTT, and people are generally scrolling down to look at each reply, not the adverts.

[quote author=Daniel0 link=topic=111429.msg452423#msg452423 date=1160983568] [url=https://addons.mozilla.org/firefox/1419/]IE Tab[/url] (windows only) Makes you able to use Internet Explorer within Firefox [/quote] yeah i like that one too, if sometimes a little unstable. the one i've gotten very used to is [url=https://addons.mozilla.org/firefox/1122/]Tab Mix Plus[/url] - adds loads of features to manage tabs (undo, etc) and a full session manager (like the one that you get when FF crashes) so you can just close FF and as many tabs as you like, and you get prompted to restore your session the next time you load up. If you're like me who goes through a page opening tabs from links for later viewing, only finding no time to read them all, this one's invaluable.

probably no way of removing them without violating your TOS in some way. if you keep your eyes peeled, you can find some pretty cheap hosting these days. phpBB itself is free (as are countless others including SMF, which this site is based on) and with a bit of patience (if you're new to PHP/MySQL) pretty easy to set up. otherwise, putting up with the adverts or paying the 'removal' fee is the only option, it seems.

[quote author=Barand link=topic=111542.msg452269#msg452269 date=1160951397] Sorry, Newb. I didn't realise you still needed to be spoon-fed. [/quote] ;D ;D no worries newb, however a tad unfair - i learnt many a thing from barand in the early days and the fact that he took the time to help (and actually gave you the solution, albeit in a different way) makes your comment a bit off. have a little more appreciation.

on this line: [code] $query = $config->query("SELECT * FROM table_mod_page WHERE title = '$_GET[mod]'"); [/code] the first double quote is effectively closing the opening quote as pointed out by barand. if you want to enclose double quotes within double quotes, or single quotes within single quotes, you need to escape them. so the above line will become: [code]         $query = $config->query(\"SELECT * FROM table_mod_page WHERE title = '$_GET[mod]'\"); [/code] note the two backslashes \ i added.