Very tricky php question I have an object with several public methods that return this so I can chain these object
, actually
its possible to do that only if its the first character?
so instead of php –with-xsl i've done: echo shell_exec("xsltproc " . implode(" ", $params) . " '$xslfile' '$xmlfile'");
i feel so dirty
remove only the first character.
if the first char is #.
preg_replace('^#','',$string);
substr() str_replace() or maybe even trim()
er, /^#/
ltrim() even
looks good, thanks.
that's a bit overboard 
How so? It has to be anchored to the beginning
ah ltrim can use different chars, nice.
indeed
can i force a form to be sent?
?
can i force a form to be sent?
could hold the user hostage and form him to submit the form
You can always talk it into.
we heard you the first time
Repeating as in forcing us to read the q.
he likes forcing users to do things ^^
kinky
think for instance when you send a post with curl… is it possible to do exactly the same thing, but against the same ip-number?
preg_replace() [function.preg-replace]: No ending delimiter '^' found
php.net/ltrim
no I don't either, not sure what you are after mm2000
You can use cURL again if that's what you mean.
I think.. he wants curl to post forms on his users' behalf?
i.e. using their ip
thus forcing them to post something. naughty
yes. psilo
Nope.
why would you want to do that? O_o
Because…
ahhh 'Because', all makes sense now
k, thanks.
works.
but does it really matter why i want to do that?
well when you want to force a user to post using their IP address … seems a little weird
Whether or not it matters is up to individual(s) you are asking for help.. and possibly some channel policy
it smells fishy, if it's not then you have nothing to worry about
i have created a openid-consumer and server that uses diffie-hellman as encryption for safe login. The classes uses curl to send data back and forward. It works just fine. Now i want to be able to use both a consumer and a server on
the same site… and therefore i have to simulate all posts that i uses curl to do before. Is that reason enough?
hello?
hi, i have a problem with dynamic links. is there a module i need for that?
hey!
what is a dynamic link?
do you get my problem now?
index.php?page=module
…
i dont know what to say
rza, my sentiments exactly
rza, want me to paste some code?
well, not really but i assume you will do it anyway
rza, nah
if you do, please use http://phpfi.com
I don't really get your problem, but I will tell you this
are you using $_GET['page'] variable ?
you can fake the ip locally, but doing it across the net won't work
as any decent network will have egress filters on their routers and won't let the spoofed IP through
rza, no i use switch ($page) {
Very tricky php question. I have an object with several public methods that return $this. so I can chain these: $object = new Foo(); $object-a()-b()-c()-a(); Now. Is there *any* way that I can check in these methods a, b, c whether they are called /directly/ from a /variable/ (so, like the
first a() call) or are called on a return value, so already in the chain (like b, c and the second a call)?
thats called register globals and its bad for you
use $_GET['page']
rza, ah THANKS
ok, i cannot really just with php hosting force to post a form to a script?
rza, finally someonw who give me a answer i understand, i know i have register globals off
yeah but you can't fake the IP address mm2000
who says you can't fake an IP address on a request?
Hmm.. my only guess would be maybe try to make a distinction between returning $this and &$this.. although if my C++ background tells me anything, $this is already just a reference.
masquerade, me
I say you can't fake a REMOTE_ADDR
yeah, all this is php5 here. objects are always returned and copied by reference…
mm
there is no such thing as $object-a()-b() — this is not valid syntax.
imagemagick doesnt compile here
what version of VS are you using?
umm.. yes it is. I'm using it all the time here
ScottMac, I respectfully disagree
the free one and that is the reason
havent got VS6 license (except at work)
what version of php?
masquerade, show me how you fake a TCP / IP session please
5
correct me
then i dont need to fake ip.
which exact version
PHP 5.1.6 (built: May 22 2007 21:06:18)
how do i send it then, just with the command?
how can i print an array at once?
print_r / var_dump
ill add VS 6.0 to my wishlist
I dunno, I don't use PHP/curl for this sort of thing.
not like that..
next one who opens a windows bug can buy that to me
or, implode('br /', $array)
rza, I could send you a copy maybe ;x
ScottMac, are you familiar with TCP packet headers?
get_headers dont work either…
do you have extra licenses?
[0] = 'blabla'; [1] = 'test'; would print blablatest
or an "onsite license"
ok, thx
I have a student license
they dont sell VS6 afaik
i could put my company buy me the VS6
i bloody hate compiling on windows
ScottMac, http://www.securityfocus.com/infocus/1674 has a good article on the basics of various ways to spoof an IP address
hello. i'm having some problems posting a text field from a form to a mssql 'text' column. it gets truncated after about 4k bytes. any ideas what the issue might be?
hi ^^
hey
ho you to
'
FlimFlamMan, ask in a channel about your database or an SQL channel in general
"Any sort of spoofing beyond simple floods is relatively advanced and used in very specific instances such as evasion and connection hijacking."
quote from that article
this stuff is of such limited use due to egress filtering
it's really not that easy.. that I know of.
unless youre man-in-the-middle position, spoofing is really useless
you can fake your source address (which is filtered about everywhere anyways) but you wont receive the packats back
nobody said its easy or that its going to get you far, the point is that it is not impossible
you would need for example arp cache poisoning or similar
masquerade, yep you've linked me to a 4 year old document that says it not really possible these days.
but then we are talking about attacking from closer to the actual server
since sequence numbers are randomly generated
Well, nothing is impossible, as they say
and my subnet on the machine is actually what it should be
is there anything like realpath() which gives an absolute path but does not resolve symlinks?
rza, does your company have an MSDN subscription?
i have no idea
i dont do any windows stuff
or very little
i know we have VS licenses somewhere
but i dont know for which version
rza, you can get a Technet license or an MSDN license that let you get access to all MS software
Hm.. Trying to return $this by reference in a class method seems to raise a fatal error..
hah
ive adjusted the file size uploadin limits as well as the memory limits, but im still gettin errors saying the connection to the server was reset while the page was loading
Yeah I have no idea man.. that's tricky.
man/woman
ScottMac, for someone with a sufficient amount of time and resources, performing man-in-the-middle attacks against a high priority target will be well worth the time, as well as other attacks that would require you getting closer to the target. Because its difficult doesn't mean it should be
trusted, and that is the reason you won't see any of the largest websites in the world relying upon things like an IP address as any sort of
unique identifier for you.
man's right
feindgild, did you try dirname?
yeah, then I'll do a e() method that one will have to call at the end of chains..
masquerade, whats your point in all this btw?
ScottMac, just saying that telling someone an IP address will never be spoofed is disinformation.
you mean like dirname(realpath($file)) . '/' . basename($file) ?
depends what you are using the IP address for
like dirname($file) . '/' .basename($file)
how did a session key get set to "db5aaeb7fe7b0aed5427d33dd4a04e07, AdUser" ?
from the URI?
may I ask why you need this anyway? $foo-a()-b() should be considered equivalent to $foo-a(); $foo-b(); // I think
hey im using DOMDocument-loadXML() to load an xml file… and it bitches that it's not utf-8…. no encoding is defined in the XML… just wondering, does it assume utf-8 by default?
can that be done?
wait, how did you get a file w/o a dirname ?
what a crock
or i suppose a lame search engine could mess around
right.
hardcorelamer, see pathinfo
psilo, eh, that is only true if you return $this from $foo-a()
yes of course.. otherwise $foo-a()-b() makes no sense
I am just curious how being able to distinguish whether $foo is calling b, or $foo-a() is calling b, is useful
rza, thanks again, now it works like a charm..
yeah it is. It's kinda complicated.. My class implements Iterator, and so when used in foreach I can control workflow. So I let it iterate over a _selection property. With these chained methods now I put different elements into selection. E.g. foreach($object-parent()-siblings()-children()).
Think jQuery in php. Now, I need to reset the selection afterwards, because otherwise the next time I use these methods in e.g. foreach, there
would still be a _selection from the last time, which would obviously cause havoc. For foreach(), I can reset the selection when there is no more valid element, so at the end of the foreach - that works. But now I want to use these selector functions also outside of foreach, e.g. have a function
set() that sets a property on all selected elements. That would mean, though, that I have to reset the selection at the end of the chain somehow.
ah and there is my answer
http://devzone.zend.com/article/1362-Fluent-Interfaces-in-PHP — talks about returning $this
i think it's horribly bad and will confuse most other devs who look at the code, they will probably think it's a bug and try to change it
sorry for being a bit verbose
hardcorelamer, I thiink that is only the case if other devs have never worked in any language but PHP and didn't start out with PHP5 and frameworrks
actually, I think I just found the solution. I do it the same way jquery does it. A normal function q($object) { $object-resetSelection(); return $object } and then for the chain just q($object)-children-set() etc.
actually, if you're interested, the code is at http://cvs.drupal.org/viewvc.py/drupal/contributions/sandbox/frando/fapi4/ . It's concept code for Drupal 7.
masquerade, i've never seen any pattern or framework, either in java, python, or PHP which regularly returns $this by reference from a normal method
never heard it even talked about until today
whoa, nice, yes I will check it out
i would consider it a bug and re-write it
they're giving a name to a "pattern", and it's not a pattern, it's just a syntax change ..
Well, good luck
8am == quittin time for me
$foo-a(); $foo-b(); becomes $foo-a()-b();
that's not a pattern… it's a crazy hacked up shorthand
hardcorelamer, its regularly done in other languages, its just more silent because other languages have different notions of types
what if a() needs to return an error…. Opps, calling -b() on an error won't work
sure it will
when you throw an exception
where is it done in other languages? i seriously would like to see an example
omg… is everyone seriously using php5 in here?
yeah
"".join(seq).capitalize();
no one makes products for other people to use at all? it's all internal corporate one-offs?
function a () { throw new Exception("Go away") }
there you go
haha
in that case -b() never happens
i missed a semi colon but you get the idea
masquerade, that's totally different… join(seq) returns a new string…
not $this
that's normal method chaining
I don't know python, but isn't a string an object?
So it's the same thing
hardcorelamer, We make products for people
we tell them PHP 5 is the minimum requirement
actually we tell them PHP 5.2
we have a list of hosts that have it
or we can offer to host it for them for a fee
does php have lists and maps like in java ?
php has an array
and thats all ?
=(
well you can do lists
is your product open source, scottmac?
i would like to see a real PHP app that needs PHP5, most of them work under PHP4 if you just s/public|private/var/
hardcorelamer, nope its not
well, i would say any larger application can take advantage of php5 features
like interfaces and abstract classes for example
proper exceptions
hardcorelamer, its called making a stand. No hosts are going to upgrade unless appllications require it.
reflection
proper date support
header('Content-Type: image/jpeg'); No errors just nothing. How can I create the image if there is other content on the page ?
none of this messing around with timezones / utc
IMAGICK SUPPORT!
one of the main reasons to upgrade to php5
lol ^^
make image.php and use img src="image.php" /
Ah I thought I did it before just couldn't remember that work around, thanks rza
php4 support ends at the end of the year anyway doesn't it?
yes
mancos, yep
exactly, no reason not to use 5
double negative
hi, silly question, but i assume i can get help about php here ?
yes
is there somewhere i can post some code ?
phpfi.com
pastebin.ca
cheers
actually we support the Pink Horse Parade, not the code PHP
damn
:oP
So that's why I kept getting odd links sent to me while in here o.O
ok
here we go
http://rafb.net/p/8VqJkA83.html
i'm trying to add alt image tags
but not sure how to do it
any help appreciated
the pp calls the image from the css file
*php
If a class extends another class, will the parent class' constructor be called when the sub-class is created?
tag
this is what i thought
rza that doesn't seem to work.
:o(
eml, a copy of the function will be called, don't use "static" function variables and expect them to work with sub-classes
Ok, thanks
i'm gonna have to take all the images out of the css and put them in the php aren't i ?
/usr/bin/php /path/to/testGet.php this=4 but the _GET array stays empty.. any suggestions ?
lost_and_unfound, don't use $_GET, use argc and argv
Hi
i am running php as a CGI and not as CLI
no the constructor wont be called,
you will have to do parent
