Topics

I have a secition on my site where people upload images. I was wondering how I could automaticaly change their image's name to a variable, i'd have to be able to not allow them to overrwrite othe rpeoples files in case of a name conflict. I was thinking of using MySQL too.

Also, I wanted to add a bar at the bottom of the image that says in plain text some variable values and words.

Do I have to have a standard size to be able to ad a bar at teh bottom of the image?

I have 2 dtabases, "MAIN" and "DATA". MAIN stores stuff for my Forum, DATA stores stuff for my own site... but I went to download a backup of my SQL stuff and... there's a mysterious database in there that I did NOT put there!!!

It's called "data" And it shows a (-) next to it (has no tables) But in fact it has 8 or so tables in it. Some weird Forum info I think, the tables are as follows:

EDIT: Now it does show a (10) (10 tables) and these are tth tables:

    wp_categories
    wp_comments
    wp_linkcategories
    wp_links
    wp_options
    wp_post2cat   
    wp_postmeta
    wp_posts
    wp_usermeta             -
    wp_users 

I dunno what these tables are for, I don't have ANYTHING else installed onto my sites besides WaltLabs Burning Board Lite, I made everything else and I don't know what wp is. This must be an error so I'm not goig to drop the table yet in case it's somone elses table.

[http://crystalchasm.net/username]

My users are allowed to have custom pages to advertise their art etc. But for security reasons I am using MySQL instead of letting them write files.

I know you can do this with .httaccess but I forgot how

Can I make http://crystalchasm.net/username (the fake URL)

Into this: http://crystalchasm.net/MAIN/members/pages?username=username (the actual way to get to a userpage)

?

[Notice: Use of undefined constant baduser - assumed 'baduser' in /fpgs/fpgshttpd/sixthcrusifix/MAIN/ADMIN/ACP_usercontrol2.php on line 2]

I know you're supposed to turn of registerd globals and use $_GET[blahblah] , but is there anything else that happens when I use registerd globals?

Can I still use $PHP_SELF if I turn off registered globals? I've had them on forever and I was gonna turn them off but I just wanted to know how much editing Ide have to do to all my pages.

if I turn off Registered Globals will this work? :

Code Select Expand


<?php
$BADuser = $_GET[baduser];
if(isset($BADuser)){
echo("
<script type='text/javascript'>
if(confirm(\"Are you SURE you want to delete user Data for $BADuser?\")){}
else{window.location.href='http://crystalchasm.net/MAIN/ADMIN/ACP_usercontrol.php/';} 
</script>
");
echo("YOU KILLED $BADuser! -They have been deleted");
}
else{echo("Hey howd you get here!?");}


?>


assuming the form that links to it has an input field named "baduser".

ALSO: About the above code, it works . . . . . it does just what it should do . . . . BUT I GET AN ERROR!?

Notice: Use of undefined constant baduser - assumed 'baduser' in /fpgs/fpgshttpd/sixthcrusifix/MAIN/ADMIN/ACP_usercontrol2.php on line 2


Here's the form that goes to it:

Code Select Expand



<link rel="stylesheet" type="text/css" href="http://crystalchasm.net/default.css" >
<table bordercolor='009800' bgcolor='000000' align='center' >
<tr><td>


<table bordercolor='98ff98'> <tr><td>
<span class='ltgreen'>
Bob </span></td><td>
<a href='/MAIN/ADMIN/ACP_usercontrol2.php?baduser=bob'>Delete User</a>
</td></tr><tr><td>
<span class='ltgreen'> Sally </span></td><td>
<a href='/MAIN/ADMIN/ACP_usercontrol2.php?baduser=sally'>Delete User</a>

</td></tr><tr><td>
<span class='ltgreen'> Jessy </span></td><td>
<a href='/MAIN/ADMIN/ACP_usercontrol2.php?baduser=Jessy'>Delete User</a>
</td></tr><tr><td>
<span class='ltgreen'> Raphielle </span> </td><td>
<a href='/MAIN/ADMIN/ACP_usercontrol2.php?baduser=Raphielle'>Delete User</a>
</span>
</td></tr>

</table>

</tr></td>
</table>



[.COPYINFO {color:000000; text-align: center; font-size:12px;font-family:Century Gothic;stroke:#000000;stroke-width:1}]

I have tried using:

filter:glow(color=000000;strength=4);

(maybe not that exactly but it was the right syntax, I got it off of a CSS website

And I've tried this:

stroke:000000;stroke-weight:0.3px;


And on Mozilla and IE niether of them work at all! I just want me damed text to have stroke so that I can see it next to my complicated background. (The reason is because a little bit of the text dissapears in a black spot)


Why aren't these working??? here's my style.css file if you need it:

<style type="text/CSS">
BODY {font-family:Century Gothic Bold;font-size:35px;font-weight:bold;color:ffffff;scrollbar-face-color:009800;background-image:url('BG_TEMP.jpg'); background-attachment:fixed;background-repeat:no-repeat;background-position:center;}
.ttl {color:af9090;font-size:25px;font-family:Century Gothic Bold;font-weight:bold;}
.area {background-color:cf5544;}
.title {color:00ff00;text-decoration:underline;font-size:30px;font-family:Century Gothic; }
.content {color:3333df;text-decoration:none;font-size:25px;}
A:link {color:000000;text-decoration:underline overline;font-size:17px;font-family:Century Gothic Bold;background-color:dd3333}
A:hover {color:000000;text-decoration:underline;font-size:17px;font-family:Century Gothic Bold;background-color:ffff00}
A:active {color:000000;text-decoration:underline overline;font-size:17px;font-family:Century Gothic Bold;background-color:000000}
A:visited {color:000000;text-decoration:underline overline;font-size:17px;font-family:Century Gothic Bold;background-color:ff7878}
.COPYINFO {color:000000; text-align: center; font-size:12px;font-family:Century Gothic;stroke:#000000;stroke-width:1}
TABLE {border-color:af7500;}
TD {border-color:af7500}
.button {background-color:df9800;border-color:984511}

</style>

I have one page that is used to str_replace stuff with another page. Unfortunately it uses some variables that are defined on the page that includes it(Actually in a page included by the page that includes it). But since the variables are not defined on this page I get undefined variable errors.

But everything works just fine. . . so I really just don't want errors for this page only.

[Notice: Undefined variable: message in /fpgs/fpgshttpd/sixthcrusifix/shoutbox.php on line 49]

This shoutbox DID work before I edited it and now I don't know what I did. It had to be changed though it was really stupid and used like 1000 &lt;? ?&gt; tags instad of putting it in one. It has 2 big errors:

1. I get the following error message in teh shoutbox:


Notice: Undefined variable: message in /fpgs/fpgshttpd/sixthcrusifix/shoutbox.php on line 49

2. Instead of the the name showing up I get the text &quot;name=&quot;. I dunno why either.


Here is the actuall code (you can see the shoutbox HERE

Code Select Expand



<?php include("shoutbbcode.php");

include("defaultcss.php");

?>


<body bgcolor="009800">

<table align="left" cellpadding="0" cellspacing="0" background="http://crystalchasm.net/Content.gif" bordercolor="#FFFFFF" >

<tr>

<td>

<img src="http://crystalchasm.net/CategoryS.gif">

</td>

</tr>
<tr><td>
<div align="center">
<b>The Final Destiny</b></div>
</tr></td>
<tr>

<td><div style="width: 669; height:210;
overflow: auto; font-family: Verdana,
Tahoma, Helvetica, sans-serif; font-size:
11px; color: #aa00aa; scrollbar-arrow-color:#FFFFFF;
scrollbar-track-color:#009800; scrollbar-face-color:#009800;
scrollbar-highlight-color:#00aa00; scrollbar-3dlight-color:#00ff00;
scrollbar-darkshadow-color:#003300; scrollbar-shadow-color:#005500;">
<div align="center">
<?
//the host, name, and password for your mysql
$conn = @mysql_connect("localhost","sixthcrusifix","•••••••");

//select the database
$DB = @mysql_select_db("DATA");


if(isset($submit)) 

{
   //use the PHP date function for the time
   $time=date("h:ia d/j/y");
   $SQL = "INSERT INTO shoutbox1 (id,name,message,time)
      VALUES ('NULL','$name', '$message','$time')";

   // inserting it into the shoutbox table which we made in the mysql statements before
   $result=MYSQL_QUERY($SQL,$conn)  or die(mysql_error()) ;

}

?>
<?
//returning the last 5 messages
$result = mysql_query("select * from shoutbox1 order by id desc limit 10") or die(mysql_error()) ;

//the while loop
while($r=mysql_fetch_array($result))
{
   //getting each variable from the table
   $time=$r["time"];
   $id=$r["id"];
   $message=$r["message"];
   $name=$r["name"];

include("shoutbbcode.php");
echo(" $b $name $b_ $br $message3 $br$br ");
}


?>



</div>
</tr>
</td>

<tr>

<td bgcolor="#009800">

<img src="http://crystalchasm.net/Category_bottum.gif">

</td>

</tr>

</td>

</tr>

</table>
<br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br>
<div align="center">

<form action="<? echo($PHP_SELF) ?>" method="post">

<INPUT TYPE='TEXT' value='name' NAME='name' SIZE=30 maxlength='100'>

<INPUT TYPE='TEXT' value='message' NAME='message' SIZE=30 maxlength='69'>

<input type="submit" NAME="submit" value="submit">

</form></div>





here is the source of shoutbbcode.php if you need it:

Code Select Expand


<?php
  if(isset($message) )
{
#Section 1, Bold, Underline and Italic

  $bb_code_1 = array("[b]","[u]","[i]","[bui]","[ui]","[iu]","[bi]","[ib]","[iub]","[ubi]","[uib]","[biu]");
$bb_output_1 =array("<b>","<u>","<i>","<b><u><i>","<u><i>","<i><u>","<b><i>","<i><b>","<i><u><b>","<u><b><i>","<u><i><b>","<b><i><u>");
$message2 = str_replace($bb_code_1,$bb_output_1,$message);

  $bb_endcode_1 = array("[/b]","[/u]","[/i]","[/bui]","[/ui]","[/iu]","[/bi]","[/ib]","[/iub]","[/ubi]","[/uib]","[/biu]");
$bb_endput_1 =array("</b>","</u>","</i>","</b></u></i>","</u></i>","</i></u>","</b></i>","</i></b>","</i></u></b>","</u></b></i>","</u></i></b>","</b></i></u>");
$message3 = str_replace($bb_endcode_1,$bb_endput_1,$message2);


#Section 2, other comoon tags

}
?>


All of the sudden I go to check my MySQL Databases ans the most important database that I haven't had time to back up is GONE. If one was going to get deleted I'd have hoped it to be MAIN but no, now my DATA DB is totaly gone and I have to remake all of my tables from it, my entire site is full of errors because all the data for logging in and keeping passwwords/etc. is gone.


Why on earth was my DB deleted without any warning!? I'd have thought if we were only allowed one database I wouldn't have been able to create it. This is REALLY crappy.


Am I going to be able to add another database or do I need to figure out how to add some more tables in the mess that I call my MAIN DB?


EDIT: THE DB is STILL here and Active BUT for some reason it won't show up in the manager, I can't back it up or even see it, it's like the manager doesn't even know it exists.

I'm using it to translate albhead to english with this:

$letters2 = array("a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z");
$letters1 = array("Y","P","L","T","A","V","K","R","E","Z","G","M","S","H","U","B","X","N","C","D","I","J","F","Q","O","W");
$msg2 = str_replace($letters2,$letters1,$msg);
strtolower($msg2);
echo ($msg2);

First of all I have to use one uppercase and one lower or nothing works.

Secondly is you type in a few words it works, but if you type in a whole paragraph some of the letters are mistranslated and show the wrong replacement letter. Why is this??

I used rename() to rename a PNG file... and it did change the name. It also erases eveything, the file is 0 bytes. HOW can you rename something without delting it!??!?!??!

$SQL1="UPDATE 'userbase' SET password = \"$NEW_PW\" WHERE username =\"$lostpw\"";


what's wrong with that? I keep getting the die message!

here's the whole script. I KNOW that just setting somone's password to a random number is a bit cheap but they can change it and I'm lazy:
(userbase is the table, DATA is the Database)\

EDIT: Turns out onone of it works anymore since I re-uploaded it!?!??!?! I get this stuff:  Resource id #4Resource id #4 Resource id #3

Code Select Expand


<?php
if(isset($lostpw))
{
srand(microtime() * 1000000);
$NEW_PW = rand(100000,999999);

$conn=@mysql_connect("localhost","sixthcrusifix","*******")or die("Sorry, Could Not Connect");
$DTB=@mysql_select_db(DATA,$conn) or die("Could Not Select Database");

$SQL1="UPDATE 'userbase' SET password = \"$NEW_PW\" WHERE username =\"$lostpw\"";

$result1=mysql_query($SQL1,$conn) or die("SORRY, password could not be reset");

$SQL="SELECT email
FROM `userbase`
WHERE username = \"$lostpw\"";
$result=mysql_query($SQL,$conn) or die("SORRY, We can't find your new password");
$EMAIL=$result;
$SQL2="SELECT password
FROM `userbase`
WHERE username = \"$lostpw\"";
$result2=mysql_query($SQL2,$conn)or die("SECOND QUERY FAILED");
$LPW=$result2;
$msg="$lostpw, your new password is $LPW. You may change your password in the User Control Panel";
mail($EMAIL,"Lost Password",$msg);
$ALERT1="<script> alert(\"Your Email Has Been Sent to $EMAIL\")</script>";
}
else{ $ALERT1="You Did NOt Define  A Username!"; }
#############################################################################################################
//The Below is the HEAD!

echo($ALERT1);

#############################################################################################################
//The below is the body
#############################################################################################################

include "defaultcss.php";
echo ("
$BG_black

$table_1
$center
$main_category
$category

$tr
$content
$TS4
$ALERT1
$br 
$LPW$LPW
$EMAIL
$TS_end1
$bottom
$br
$tr_end
$main_bottom

$div_end
$table_end
")
?>
<?
######################################################################################################

//Below is the MAIN MENU (The default menu for ALL pages)
######################################################################################################
include "default_menu.php";
?>




[Edit by nq2h:]

The following s redarging PHP only.

Okay, I know how to use MD5 to encrypt something. . . and I know how to use crypt() to encrypt something. . . BUT HOW THE HECK DO YOU DECRYPT IT?? I have a login/logout registration script I made that stores users in my database, but I wanted to ecrypt the passwords for security.. but I don't know how to decrypt them! Can anyone helP?

So far I have this:

$password = md5($userinput);

if(preg_match("/^\w+$/",$username)){
   echo "Username is fine, ";
$conn = @mysql_connect("localhost","sixthcrusifix","-----") or die("Connection Failed, Contact Admin");
 
  $db = @mysql_select_db("DATA", $conn) or die("POOP");

  $sql = "insert into userbase (username,password,EMAIL,interests) values (\"$username\",\"$password\",\"$email\",\"$interests\")";

But when I'm checking to see if they got the password right on logging in . . . could I just MD5 their input and see if it matches?

Edit by nq2h: Your mysql password has been filtered.

I have crystalchasm.net and it works great. bUt I want people to be able to email me at Admin@crystalchasm.net.


Unfortunately the people I bought the domain from don't offer any service.  I got an account at superhost.com and aparently I can point my name servers towards it and have a catchall email account there. But the webhosting sucks, I wanna keep freepgs. I guess I can't host with freepgs and get email through superhost so what am I to do?

[<?php]

 I Know how to use RUBY (Basic KNowledge anyway) because I've used it in othe rapplications like RMXP.

BUT

How would I do it? I have the same problem with pearl.

How do I make the page know that I'm writing something in RUBY? It's not like PHP wheer you just do <?php is it? I've neve rused it for the web before but I'd like to. I'm just confused.

Somone probably already talked about thhis but at this moment I don't really have time to look for it. I had a Platinum Account but no domain name or anything, will I ever get my account back or am I gonna have to pay $16 dollars again or what?