Daniel0

I find Notepad++ quite annoying. You'll have to explicitly select "PHP File" from the drop down menu on the save as dialog in order to be able to use the .php extension. Otherwise it'll override the extension and make it .txt instead.

I don't think you understand the MVC pattern. If you only have a model and a view then you're essentially doing nothing.

@aschk: I never mentioned the controller. You can just call the form rendering class from the view. You said and then you said So paraphrasing your post, you're saying that the form class isn't good because it uses PHP to generate the HTML instead of manually typing the HTML. Therefore did your message imply that the model-view-controller pattern only applies to web applications.

Dual core processor speeds are per core, so if you have a 1.8 GHz dual core processor then you'll have two cores on that processor that each are able to run at that frequency.

No it doesn't. You'll still have a separate view part even if you choose to generate all HTML using PHP. By your definition the MVC pattern will only work with web applications and that's not true.

Yes, it does. It's a must if you're working with multiple people and still a good idea if you're working alone. You have a repository somewhere. You commit any code changes/additions to the repository. Other people can then see how your revision differs from the old revision (or any other revision). You can see who made which change and you can rollback changes if you'd like to. For actual usage you're better off reading SVN's documentation than anybody here explains it.

Or download the trial versions.

It is a good think. It'll enable you to make polymorphic methods so you can create an interface which will act accordingly to the types given. Take for instance the + operator in a strictly typed language. If it wasn't overloaded then you'd need four operators instead of one (if we only take integer and float types into account): int + int, int + float, float + int and float + float. In some many languages it acts as a concatenation operator as well which will require additional overloading again. The reflection classes can however not add that type of overloading functionality. You'll have to use the magic __call() method for a kind of emulated overloading.

That doesn't mean your code is good. And the client doesn't know whether the code is good because if s/he was a programmer then s/he would've just written it herself/himself. I've never done any freelance work (I don't want to) but from what I hear and what I can see clients would rather pay less money and get what in reality is a piece of shit rather than pay for quality. Truth is that in the long run they'll just have to pour more money into it in order to maintain it, because what they paid for was non-modular, interdependent, hard to maintain, crap code.

It is... the last URL contains this link: http://www.rednetcat.com/cattalk/wp-content/plugins/mygallery/myfunctions/main.txt It looks to be some kind of script which will enable the attacker to gain remote entrance to a computer if uploaded, i.e. some kind of rootkit.

I'm sorry about your vision problems. I didn't mean to offend you and I hope I didn't. I was just referring to the fact that all your sentences end with a lot of periods. I'm quite sure my use of commas and such in English isn't always perfect either.

Totally off-topic: I found this using Google and I thought you might find it interesting: http://www.informatics.sussex.ac.uk/department/docs/punctuation/node00.html

I did some tests and it works as expected for me. What's the rest of your .htaccess file? What GET variables are set when register.php is called through one of the rewritten URLs?

Loop through it. There are some examples here: http://php.net/mysql

Use strtotime() to make it a UNIX timestamp and date() to make it a formatted date again.

Just use one method, set the default argument values to null and check inside the method whether they're set or not.

That's because it's in your cache.

It's not public var but just public (or var if you use PHP4 which you shouldn't).

I see. That makes sense.

I always secure against SQL injections by using prepared statements using PDO and I secure against XSS by filtering the data just before it's output. Also, why trim() it? It'll just remove whitespace from the start and end.

It is possible, just not with your system. It doesn't matter whether it's the admin group, you could say it like this too: Group X has access to resource Y and Z. User A is part of group X, but should still not have access to resource Y.

"how do say that John" makes no sense to me If you asking "If admins are allowed to edit "plugin1"; how is it that "John" (who is an admin) is not allowed to do so?" The answer is that IF John is apart of the "Ultimate/admin/whateversuperuseriscalled" group - he can do anything. He asked how you would deny John access despite the fact that he is in the admin group.

Yeah, didn't check FF2. It only happens on that particular page though.

How would you do that? Your authorization check is based on checking if integers are greater or lower than another integer.

@Xeoncross: Then what would you do if you wished to add another group which has less rights than 'admin' but more rights than 'mod'?