taichimasta

wait what I never got an email about any hack email. I smell BS

Hi , Just tried to reset my password twice and didn't get a notification thank god I remembered on the third try. basically there is still a probably with the email .

Sorry I'm going to be "that guy" but WOW. session_start(); is the basic function when using sessions , whatever page you want your user/client info to be remembered on put that and your golden. now you just have to make sure you secure it from any from of exploit. Good luck! Admin or Jaykappy can mark this as SOLVED!

fixed it it was the path that was the problem. Thank you for your reply(s)

i fixed it , i thought i corrected that but whatever , it still says its uploaded successfully but nothing. here is what it looks like now. //file variables put in another file so it can be sperate //path to the folder where the data will be sent $filepath = "\music"; /// file size and type $readsize = $_FILES["upload"]["size"]; $readtype = $_FILES["upload"]["type"]; // name of the data being uploaded $filename = $_FILES["upload"]["name"]; $filetemp = $_FILES["upload"]["tmp_name"]; //// file path and basename example.wmv so its (uploaded_music/example.wmv) $filepath = $filepath.basename($filename); /// the uploader itself and the checker $uploaderLine = move_uploaded_file($filetemp,$filepath); ?> <div class="video"> <?php if($uploaderLine == true) { echo "The File: <b>".basename($filename)."</b> has been uploaded successfully. \n <br/>"; echo "The size is: <b>".calculatebytes($readsize)."</b> and the limit is 50MB."; echo "<br/>".ceil($readsize/100); //display image if not an image don't display it ?> <br/> <img src="<?php echo "music/".$filename; ?>" border="0"/> <?php } else { echo "Sorry something went wrong with the file: <b>".basename($filename)."</b> , please try again.<br/>Errors Number: <b>".$_FILES["upload"]["error"]."</b>"; echo "<br/>The size is: <b>".$readsize."</b> and the limit is 50MB. <br/>"; echo $readsize." - File Size<br/>"; echo "52428800 - Limit \n <br/>"; } ?> <br/> <form method="POST" enctype="multipart/form-data"> item uploader: <input type="file" name="upload"> <input type="hidden" name="MAX_FILE_SIZE" value="52428800"> <input type="submit" name ="fileupload" value="Upload"><br/> </form> </div> oh and by the way , i can't find the edit button where that bloody thing go? i don't want to repost the whole code and everything constantly, rather then just edit the post .

I'm not here for a "How to" just need a bit of help to figure out "Why it isn't working" I know my code is correct and name all variables and will build more once i get to simple work. First i had it kinda work it uploaded a file but the name was the name of the folder so instead of example: $path = "/music"; // the folder in the same directory (yea i learned quick where it goes) $path = $path.basename($filename); // file name example.jpg or something instead i got the output music <-- yea no extension and after i tried to figure out what i did wrong it stop working completely but it successfully uploaded the file and everything.. /////////////////////////////////////////////////////////////////////////////////////////// //file variables put in another file so it can be sperate //path to the folder where the data will be sent $filepath = "\music"; //// file path and basename example.wmv so its (uploaded_music/example.wmv) $filepath = $filepath . basename($filename); /// file size and type $readsize = $_FILES["upload"]["size"]; $readtype = $_FILES["upload"]["type"]; // name of the data being uploaded $filename = $_FILES["upload"]["name"]; $filetemp = $_FILES["upload"]["tmp_name"]; /// the uploader itself and the checker $uploaderLine = move_uploaded_file($filetemp , $filepath); ?> <div class="video"> <?php if($uploaderLine == true) { echo "The File: <b>".basename($filename)."</b> has been uploaded successfully. \n <br/>"; echo "The size is: <b>".calculatebytes($readsize)."</b> and the limit is 50MB."; echo "<br/>".ceil($readsize/100); //display image if not an image don't display it echo "<br/> <img src=\"\music\\".basename($filename)."\" border=\"0\">"; } else { echo "Sorry something went wrong with the file: <b>".basename($filename)."</b> , please try again.<br/>Errors Number: <b>".$_FILES["upload"]["error"]."</b>"; echo "<br/>The size is: <b>".$readsize."</b> and the limit is 50MB. <br/>"; echo $readsize." - File Size<br/>"; echo "52428800 - Limit \n <br/>"; } ?> /////////////////////////////////////////////////////////////////////////////////////////// <br/> <form method="POST" enctype="multipart/form-data"> item uploader: <input type="file" name="upload"> <input type="hidden" name="MAX_FILE_SIZE" value="52428800"> <input type="submit" name ="fileupload" value="Upload"><br/> </form> </div>

no offense help is help but i'm pretty sure upgrading windows xp to windows 7 doesn't look or sound like a PHP thing .. that's it just wanted to put my two cents in since i haven't been around forever.

Sound like your asking for someone to do it for you. personally i don't think its possible in the way your asking. or w/e

oh i think i see Thanks works

here is the page , what is looks like. <?php // i hate leaving my something not finished up

uh thats my fault thats not how it really looks its an example the function is inbetween the <?php and ?> i'm not completely brain dead lol

its not a mysql_error i've checked , its the function it self something isn't reading. what am i doing wrong? i need the function to execute the query and it just does nothing.

hi again , i just have a question i'm trying to get my query to execute within a function. i don't know whats wrong with it example: (looks like this) <?php function online(){ $change = "UPDATE person SET online='1' WHERE uid='$memeber'"; $status = @mysql_query($change) or die("\n couldn't read if you are online <br/>\n "); ?> } content <?php online(); ?> Doesn't send the query what am i doing wrong?

no offense but you should play around and look at all attributes of phpmyadmin or pick up a book or just type it in google, that way you don't feel lost in the beginning of what your doing.

ok i think i got it , I'll do a few test runs so i can get the concept and use it. i'll use this method as a practical method. Thanks I'll post if i use any advance methods for salt later on.

so let me see if i get it don't store the password but the salt and that of what the salt produces. blue = adljsa98a88723uiasd982u9823 <--example blue + salt(*)_#(@) = ja9dsa908a298a3982323j98j32891u92 right? now when the person(me) logs in how would the salt be stored ? so it can be authenticated.

plain text , varchar is plaint text? (kinda of a dumb question but w/e)

Question: I'm trying to go about protecting my database in which i will be us a hash and salt , thing is how would i go about it ? 2nd Question I read never save the password/hash into the database is that even possible when you have users who need to login lol? Hope everyone understands the question(s). 3rd Question I'm trying to make my database clear or set a query 30min or 2months is there any functions that i could write to have that done?

I'm still a novice , but I'm sure a sql injection can be made when any query isn't sanitized/protected. I'm working on something similar so everything and anything that access my database gets protected/escaped/e.t.c. I could be wrong tho have only been working oh php/mysql for a few years.

wordpress i've actually recently worked on , a site for my friend using wp. anyways try loading the file (wp-load.php) and see if that fix's the error.

holy crap that was it , i feel like an idiot thanks you and so fast.

$user = $_POST['username']; $pass = $_POST['userpass']; there set ^ its right before

still can't login , and i checked the query/$sql it just gives me the what i wrote $sql = "SELECT * FROM users WHERE user_name='$user' AND user_pass='$pass'"; ***********************************************OUTPUT********************** SELECT * FROM users WHERE user_name='' AND user_pass='' and mysql_num_rows still gives me 0 which it shouldn't.

oh your right, ! fixing that now

why is it pointless genericnumber1? i need stripslashes and mysql_real_escape_string to prevent injections. and thanks btherl i'm going to do that right now. plus the connection to the database is fine i just put filler varables there so i wouldn't accidently put the real string in to show in this forum. and yes forgive my grammer that will be fixed its less of a worry right now , my main concern is the backend/php.