|
Web design and Programming Discuss website creation and other programming topics. |
|
Thread Tools | Search this Thread | Display Modes |
#1
|
||
|
in progress
|
#2
|
||
|
Nice but nave and logo don't go the best.
__________________
|
#3
|
||
|
i like it.
|
#4
|
||
|
Awesome...nice work...simple but still cool
__________________
|
#5
|
|||
|
Quote:
I like it all mate, still missing something, but i'm not sure what |
#6
|
||
|
Are you leaving OAP scopes or will this clan do a diff version of DF?
__________________
|
#7
|
||
|
thinking of leaving... why?
|
#8
|
|||
|
Quote:
|
#9
|
||
|
i like that it's simple. but it looks like 10 000 other sites. a bit unoriginal.
also learn a bit about security. make sure u validate what pages can and cant be included. it's good that u put include($pagename.'.php'); w/o the .php any file could be included on your server. or maybe they still can. i just cant figure out how to make it ignore .php =D you didnt validate for ../ so if u have some important file say /home/a114588/o2x/file.php technically people cannot access file.php cause it's outside of public_html file but with your setup it is possible http://ae-hq.com/o2x/index.php?id=../file try creating file.php outside public_html see if it includes it also i dont know if this is harmful to the server http://ae-hq.com/o2x/index.php?id=/h...html/o2x/index but that'll include index file for a long time =D. do something like PHP Code:
goodluck with the site man.
__________________
http://addf.net http://som.addf.net http://snmservers.com http://snmfuturedomination.com ------------------------------------- but there it's a different movie she stares into the screen and fantasies enter her harder than all those who will get to know her Last edited by prey; 04-14-2005 at 04:20 PM. |
#10
|
||
|
:s you lost me at the top of your post...... step by step please
|
#11
|
||
|
k,
how do you include the pages? like home, members etc. u check the $_GET['id'] variable right? well that variable comes from the URL. and anybody can modify it. if they modify it in right wrong way it's potentially a security risk because they can access and cause things you didnt mean for them to. so you have to validate that variable, perform different checks so you're sure that no matter what the user enters for index.php?id=<insert stuff here> it wont cause anything you didnt expect. right now there's a bunch of things that can happen that you didnt expect. for example index.php?id=../yourfile will include a file that is located in the parent folder of the folder where index.php is located. where if index.php is in public_html then your file will be in /home/a135s9/8x2 only things in public_html can be accessed by connecting to the webserver. but with your set up they can access any file that ends with .php anywhere so that's a potential security risk =D i am not good in explaining things and i am not an expert. but still try to fix that. gl
__________________
http://addf.net http://som.addf.net http://snmservers.com http://snmfuturedomination.com ------------------------------------- but there it's a different movie she stares into the screen and fantasies enter her harder than all those who will get to know her |
#12
|
||
|
erm i just put <?php include("$id.php") ?> whereever i use it...
|
#13
|
||
|
Thats not the most stable way to do it ... here is, I know it off by heart :
PHP Code:
|
#14
|
||
|
Ohh I like that way
I don't like passing variable values in the top of the address bar...
__________________
|
#15
|
||
|
that still lets you enter ../../ and such
here's one way to do it PHP Code:
__________________
http://addf.net http://som.addf.net http://snmservers.com http://snmfuturedomination.com ------------------------------------- but there it's a different movie she stares into the screen and fantasies enter her harder than all those who will get to know her Last edited by prey; 04-15-2005 at 02:37 PM. |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
phUploader progress bar? | KidCactus | phphq.Net Forums | 7 | 08-04-2012 11:19 AM |
work in progress sig | Skin | Sigs and Graphics | 4 | 03-10-2009 06:02 PM |
C3D Progress | Terry | Sigs and Graphics | 16 | 07-10-2005 04:20 PM |
Work in progress.... | tzer | Sigs and Graphics | 26 | 12-06-2004 06:05 PM |