Cardale

Does isset have a limit on how many items it can check?

I'm a little confused on what your trying to do.

Well I don't have the code yet, but I want to add C code from a form(user input) and place it into my database. How should I do this safely? Excuse me I do know of addslashes($val); htmlspecialchars($val); but when I look in my database it is just raw code. I would like to avoid complex injection if it is at all possible with maybe some encoding method or what not?

I am dealing with C code and I need to make sure it is encoded some how to ensure its integrity and then decoded. For security and later readability.

Post code

Alright dude.

To do this I believe you would have to simple add another session that is the checker session. If it is set and if you do a match search on the value to see if it has the usernames id then do let them even see it or something.

Not to be rude, but why doesn't your client hire some one that knows what they are doing? You need to read tutorials about. Do a search on "login systems" "uploading files" or "writing to files" all with PHP in the query.

I am working on a system such as this if I understand you correctly. PM me.

I think I understand how it is happening ... maybe, but what I don't know is if this is a malicious user or a serch crawler. Would a search crawler attempt to insert any arrays into GET POST ?

Oh sorry. This is the line that throws the error. if (get_magic_quotes_gpc()){ $_GET = array_map('stripslashes', $_GET); $_POST = array_map('stripslashes', $_POST); $_COOKIE = array_map('stripslashes', $_COOKIE); }

I am getting a consistent error being created by users that I cannot duplicate any rational way unless I am trying to insert malicious code. I did a search a few of the IPs in my error log and I believe it is a bot. Could this error come from search bots? My error system is catching these results and preventing any information from being displayed(I believe any input here is welcome) but I would sure hate to think I am preventing search crawlers from following my site. Here is my error out of my error log. Time: 20 Nov 09 - 4:46:20 AM (PST) File: /var/www/index.php Line: 275 Code: E_NOTICE Message: Array to string conversion

Sounds like you need to learn the basic of connecting to a database and using select and insert queries. Google that stuff and you will be well on your way.

I heard you there. Backwards compatible is stupid. If a person doesn't have the newest tech then they don't get the newest software. That simple. Then again I could see how large corporations such as Microsoft and Apple might try and exploit this type of mentality or even intel and amd. Adding multiple cores on top of multiple cores. They can't make them much faster so they just add more cores now. Haha.

they must share your same level of curiosity where this information is being gathered and how it ended up on a reputable website like w3schools.com is beyond me. i know that different browsers set different limits, so perhaps IE6 and less had a limitation of 100 using GET, but that sure ain't the case now. i would assume passing strings/variables via form using the GET method might have some string length limitations as the headers being sent might play a factor, but it has become quite clear: believe nothing, test everything. reputable? W3 Schools is just another company trying to throw on more standards to try and own programming. HTML 2.0 or what ever is garbage. Unless your going to add new functions to HTML leave it alone. Just make standards and stop. They keep revising and revising and revising. They have nothing left to revise for cryin out loud. It is HTML!!!!

It is better practice to use a switch. A lot of problems with this type of system.

Try this. $name = trim(strip_tags($_POST['name'])); $link = trim(strip_tags($_POST['link'])); $code = trim(strip_tags($_POST['code'])); if (trim(strip_tags($_POST['code'])) != $_SESSION['cap']) { print "Code was invalid</div></body></html>"; exit(); } if (trim(strip_tags(!preg_match("/http:\/\//",$_POST['link'])))) { print "Link was invalid</div></body></html>"; exit(); } if (( $name == "") || ( $link == "") || ( $code == "")) { print "Form was incomplete</div></body></html>"; exit(); } elseif (strlen($name) > 25){ print "Name too long</div></body></html>"; exit(); } elseif (strlen($link) > 150){ print "Link too long</div></body></html>"; exit(); } elseif (strlen($code) > 6){ print "Code too long</div></body></html>"; exit(); }

if(move_uploaded_file($_FILES['userfile']['tmp_name'],$upload_path."WILLNOTWORK.pic")){

How do I change the file name on upload?

ok thanks.

apache error log?

I moved server and now this isn't working. I am just using the mv command on a Linux machine. How does exec command work? How can I figure out what type of errors I am getting with this?

How can you not allow users with no ip to view my web server?

css methods are what your looking for. Not PHP, but since I am a good guy http://www.tizag.com/cssT/float.php