IRC Logs

Network: freenode Channel: #php

	Enter your search terms Submit search form
	Web www.irclog.org

[00:00]<||aw>Pisterman: then use flash, which can auto install
[00:01]<||aw>Pisterman: the restriction is there for very valid and serious security reasons. many times "easy" means "please rape me"
[00:01]<sdmnd>when working with imagejpeg, is there a default maxsize for images being used?
[00:03]<ugywm9m>when im creating an register form, is better to use another .php file with the creation process or is better to put all in the same .php file using { action="<?php echo $_SERVER['PHP_SELF'];?> } ?
[00:04]<pysvgzdrg>||cw: so there is no chance i can load that dll to use on the client side?
[00:06]<||aw>Pisterman: no. you need something that is signed, so it can extend beyond the sandbox and access the file systsem
[00:06]<||aw>as far as I know, you can't sign javascript
[00:06]<pysvgzdrg>||cw: thanks
[00:06]<azza>Javascript is too easy to alter on the way to the client
[00:06]<drvvdaa>Well, you can, but nobody does.
[00:07]<drvvdaa>And I think it's just a Mozilla thing, anyway.
[00:07]<drvvdaa>Useful in extensions, not so much in websites.
[00:07]<mrfmgg>how can i check if variable is numeric?
[00:08]<drvvdaa>Did you try searching the manual for 'numeric' ?
[00:08]<svjzdzxzsnz>MalMen: ctype_digit()?
[00:09]<sdmnd>nobody knows the maxsize allowed when using imagejpeg ?
[00:09]<mrfmgg>im know now the error
[00:09]<svjzdzxzsnz>sidey: That'd depend on the memory
[00:09]<mrfmgg>i put $is_numeric
[00:09]<mrfmgg>:S
[00:09]<svjzdzxzsnz>*blink*
[00:10]<apzjtuzp_>i'm upgrading from 4.4.0 to 5.1.* is there anything i need to change in my php.ini?
[00:10]<svjzdzxzsnz>not really
[00:10]<apzjtuzp_>ok good
[00:10]<sdmnd>Stormchaser: can it be getimagesize() that doesnt allow too large images ?
[00:11]<svjzdzxzsnz>sidey: That shoudn't be important...
[00:11]<mrfmgg> if (is_numeric($quota) = FALSE)
[00:11]<mrfmgg>Fatal error: Can't use function return value in write context in /var/www/painel/modulos/adduser.php on line 15
[00:11]<mrfmgg>:S
[00:11]<cdrnjw>sidey: what size image are you opening?
[00:11]<apzjtuzp_>when i went to apache2.0.55 from 2.0.52 there was like a huge dir change and config's changed... so thats why i ask
[00:11]<st00pyd>MalMen: RTFM :)
[00:11]<svjzdzxzsnz>*sigh*
[00:12]<st00pyd>MalMen: = is for assignment. == is for comparison. === is for strict comparison.
[00:12]<sdmnd>1,26MB is okey, with the resolution 1000x1333
[00:12]<st00pyd>Not too hard, plenty of examples per function.
[00:12]<mrfmgg>im pass long time far far away of php
[00:12]<cdrnjw>sidey: that should work just fine if your php memory limit allows it.
[00:13]<apzjtuzp_>and all i wanted was the pdflib... fucking gentoo
[00:13]<svjzdzxzsnz>gentoo \o/
[00:13]<sdmnd>ahh, i think its the resolution-size that matterst
[00:14]<sdmnd>for example, 1000x1333 works
[00:14]<drrjw>hola
[00:14]<sdmnd>but 1944x2592 doesnt work
[00:14]<apzjtuzp_>its like an audi, it works great when its working, but when there is a problem. you have change a ton of stuff
[00:14]<drrjw> pplication Error - Database misconfigured to use an unsupported driver: ADODB ¿?
[00:16]<sdmnd>can i set the maxsize of an image somehow ?
[00:16]<vxngza>Hello. I'm trying to list all the letters of the alphabet using the range and foreach functions. Can someone help me out here?
[00:16]<dnlznvyjn>magox: #mysql
[00:17]<aa2_fdanud>is it possible to specify the path for a session cookie?
[00:17]<aa2_fdanud>without having access to the ini configuration?
[00:17]<dnlznvyjn>foreach (range('a', 'z') as $letter) echo $letter;
[00:17]<drvvdaa>http://php.net/setcookie
[00:17]<drvvdaa>Oh, a session cookie.
[00:18]<drvvdaa>http://php.net/session-set-cookie-params
[00:18]<aa2_fdanud>mattmcc: thanks a bunch.
[00:18]<txgwzzmgg>Hi. I'm using mod_auth_mysql apache module to handle the login procedure from the Apache to MySQL side. Now the passwords are stored encrypted (mysql encrypt()). I want to no longer use mod_auth_mysql and just use a PHP class I've written to handle everthing. How can I take a password and compare it to an encryted password?
[00:19]<vxngza>thank u, depretion
[00:19]<txgwzzmgg>mod_auth_mysql does this some how, but I have no idea where to begin.
[00:20]<zdzxzzmfdgzx>TheWarden: Figure out which encryption method it used, and use that method and compare the outputs.
[00:20]<drvvdaa>Do the comparison in a query.
[00:20]<drvvdaa>Only way to access mysql's special short-bus hashing method.
[00:20]<svjzdzxzsnz>!tell theGZA about u
[00:21]<txgwzzmgg>richardlynch: it uses mysql encrypt() which is equivalent to C's, not sure if this matches crypt() in PHP. So grab the password from database and then take the submitted password crypt it and compare it? Whould these not match as it's never the same.. unless it creates some hash.
[00:22]<zdzxzzmfdgzx>TheWarden: Errr. The encrypted version *IS* a hash, really. The question is which hashing function they used in mod_auth_mysql
[00:22]<txgwzzmgg>oh encrypt() of MySQL uses the Unix crypt().. which should be the same as crypt() in PHP.
[00:22]<txgwzzmgg>richardlynch: right... damn ahh that wlll be tough
[00:23]<pysvgzdrg>||cw: can you give me some advice from where to start to do it with flash?
[00:23]<pysvgzdrg>||cw: or with java?
[00:23]<zdzxzzmfdgzx>TheWarden: Or just use: SELECT password = encrypt('$password') FROM whatever where username = '$username'
[00:24]<djrdnrv>enjoy !
[00:25]<svjzdzxzsnz>*urp*
[00:25]<dnlznvyjn>Stormchaser : Do you chill in here all day whilst you are at work? :P
[00:26]<txgwzzmgg>richardlynch: oh I didn't think that would work as I thought it changed each time the hash... so if I take a password that has been crypt() and then take another password and crypt() that they should always match?
[00:26]<txgwzzmgg>richardlynch: well if the passwords are the same that is I mean.
[00:26]<dnlznvyjn>the hash is always the same yes
[00:26]<apzjtuzp_>ah now my mysql-connect doen't work, why am i not surpized
[00:27]<svjzdzxzsnz>DepretioN: I like to munch random people :)
[00:27]<rrrnfrq9>where can I get mysql administrator
[00:27]<dnlznvyjn>AfroTurf : You are not surprised because you know your level of knowledge :)
[00:27]<zdzxzzmfdgzx>TheWarden: That's kinda how it works, yeah. Some hash functions bury a "salt" into the encrypted data -- E.G. the first 2 characters or everything between $1$ and $2$ in the middle or... You have to know the function, and how to get the salt back out, but it will always works out the same for the same inputs.
[00:28]<dnlznvyjn>angela24 : jobs.com
[00:28]<svjzdzxzsnz>angela24: probably in some store as well...
[00:28]<drvvdaa>A pet store, perhaps.
[00:28]<svjzdzxzsnz>yep :)
[00:29]<drvvdaa>PHP parrots, mysql monkeys, linux llamas...
[00:29]<zdzxzzmfdgzx>angela24: It should have been installed as mysql_admin right next to mysql binary, unless you installed only mysql-client, perhaps?
[00:29]<drvvdaa>Wait, they don't sell llamas in pet stores.
[00:29]<fzvnzzfus>Your pet store doesn't sell llamas? Do they carry alpacas?
[00:29]<drvvdaa>Only on the TVs by the registers.
[00:29]<txgwzzmgg>richardlynch: so to test this theory I should be able to do this then, SELECT * FROM WebAccounts WHERE Password=encrypt('passwordhere');. Test it against an account I know for a fact the password is. So far not working.. and I know I'm not using salt.
[00:29]<rrrnfrq9>um richardlynch I was using my sql control center
[00:29]<drvvdaa>Apparently they can make you rich.
[00:29]<rrrnfrq9>but is deprecated
[00:30]<dnlznvyjn>angela24 : #mysql
[00:30]<fzvnzzfus>A male alpaca just sold recently for $600,000
[00:30]<apzjtuzp_>where is /tmp usually at?
[00:30]<zdzxzzmfdgzx>TheWarden: How do you know mod_auth_mysql did not use a random salt? You don't know that.
[00:30]<dnlznvyjn>Yes TheWarden , if that failes the hash is different

Back to #php
Or go to some related logs:
#ubuntu
#css
#suse
#gentoo
#suse