dj-kenpo

then it's your .htaccess file and how you've written it or your server. the code is fine and not the issue. google tutorials on .htaccess and do some reading up on what it is and how it works. good luck

oh, there you go.

dunno, I'm curious too.

you can do this with .htaccess RewriteEngine on RewriteRule ^/(.*) /view.php?ID=$1 I beleive,..... or is it ^(.*) .... I dunno, try it out...

PHP is not C++. as ANdy said, it's doing what PHP does, ther eis no workaround, you want flash or javascript, not php

are the articles stored in a database? if so, add an extra row to the table called 'type'. on your edit page use a drop down for movie, etc. then when the page loads do a call for different css files depending on the reults of 'type'.

thanks guys! it's just transitional for now, but yes, in a year or so I want to make the full switch to xhtml, so the xss attacks, which I'm in the dark on will become a problem. thank you for the early alert so i can plan for it. no exec and eval, got it. I'm good then!

if you want to make a page that times out, build soemthing with a loop that loops 10k times, etc... then see what happens. I believe it just returns nothing, $string="";

I think he means (by saying 'class') that he's looking for soemthing to run on the site. I'd love that as well (and not just a widget that takes people away from your site) anyone know of a good one that embeds?

I'd say if the transaction was complete and good, generate a unique code, place it in an sql table, and then send the user the link. once the page that link leads to is accessed, update that entry . for instance, the table would look like ID/image_name/unique_link/viewed. viewed would start out as 0, once accessed it changes to 1. so the page cannot be viewed again. to view the image, user clicks your custom link ie view_image.php?unique_link the page queries the db, finds 'image_name', and displays the image.

it's not a safe way, not at all. paypal is a much better solution for small business, it's not seamless, but it has encryption and security. if I was a cusotmer of yours and found you emailing my credit card I'd take you to court. you can always google for answers as to why emailing a credit card number isn't safe and then print them out for the organization.

you're emailing peoples credit cards? are you serious? do you know how dangerous that is?

you'll have to post some code I think, as it's hard to see what's happening behind the scenes. php code is not viewable on a website, so perhaps your variable is wrong, or anything. one host may use php4, the other php5, etc.. not enough to go on. and how are you accepting credit card numbers? if you're just sending them to a dataase it could be a HUGE security risk.

is there any risk of hacks via allowing a simple css file to be uploaded to a site? (please read full question) it'll be run AS css, and not php, HOWEVER, when the file is opened (fopen), and then the string value placed into an edit form, can (not sure the limits of php, hence my question..) the string that's been read from the file execute any php or echo any values? once the contents of file.css are turned into $file_CSS is it JUST $file_CSS, or can it run anything? again, as a .css it's safe (or I beelive so) but when it's a string value floating on the page, can it execute anything IF some wrote say "$User_ID" "$security", etc in the middle of the file? really the question is, can code be executed from within a string variable? Thanks.

keep in mind, this will be a problem if the logo is referenced in CSS and not on the real page, so you might want to grab the css files as well. all my sites uses divs where the logo goes, then the img is in the css. it's more flexible that way and less 1998 a la tables font tag garbage

dude, just download opera for gods sake. it runs on every platform imaginaple from playstations to pc. it's not like testing with safari on a pc, which is still possible via emulator.

whatever function you use to detect attacks, just add an extra line that does an sql insert. still filter it, but then just do an extra line of code.

are your permissions set for read+write in whatever folder you're storing the txt in?

no one does online payment processing?

ya, I'm looking for something hidden. paypal doesn't look very professional for mid sized business...

sort of a php question. does anyone here have a particular payment system they use that integrate well (ie hidden) into their php work? I'm not looking to do one from scratch and worry about security issues, but I also don't want a full paypal ugly thing either. I'd just like soemthign I can hide behind the scenes in my php script. I figure one or two of you must be doing the same. google finds me lots, but I'm sure some are better than others.... cheers!!!

disconnect at the bottom of your page when all is said and done.

why not give the option of how you want it sorted... it's not hard, php is there for just that reason. make a simple if statment, 3 different sort by endings for your query, and execute. let the user decide, there will be times where you would want to sort by department if you're trying to find someone in a specific department but don't want to scroll the entire list of names

get is useful if you want people to frequent certian sections of your site. like for instance be able to tell a friend about a specific photo. using post, they'd have to say click this then that, then that, then this. much like annoying flash garbage that has nothing in the url. get = friendly (soemtimes messy and unfriendly) urls so people can bookmark specific pages.

yes, tinymce is great. though it's big limitation is if you put it in hidden div elements, or basicly surround with any sort of java. but it's still great. multiple settings. some are tiny, some are huge..... depends if you need bold/italics, or the whole slew of emoticons/html etc.