php-windows Digest 8 Feb 2002 02:33:19 -0000 Issue 991
Topics (messages 11891 through 11904):
Re: HOT! - PHP4.1.x - Step by Step Installation manual
11891 by: \"Crash\" Dummy
block <ctr><alt><del> and <alt><tab>
11892 by: Baloo :0\)
Better security for write permissions?
11893 by: Angie Tollerson
11894 by: \"Crash\" Dummy
11895 by: Angie Tollerson
11897 by: \"Crash\" Dummy
11898 by: Angie Tollerson
11902 by: \"Crash\" Dummy
PHP 4.1.1 on iPlanet 6 sp1 on XP Home (I'm reaching here)..
11896 by: James Hallam
WinXP+Apache+PHP+MySQL -> timeouts?
11899 by: syl3275.poczta.onet.pl
PHP, COM, & Crystal Reports
11900 by: Nicole Amashta
Printing with PHP 4.1.1. for Windows
11901 by: Strashimir
11904 by: alain samoun
Re: undefined variable
11903 by: daniel cozzolino
Administrivia:
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
--- Begin Message ---
Thank you much. I either missed Step 10 in the installation instructions for
ISAPI in the manual, or it's not there. That solved a lot of problems!
--
Dave "Crash" Dummy
Certified Dilettante
[EMAIL PROTECTED]
http://lists.gpick.com
--- End Message ---
--- Begin Message ---
Hi,
I have a routine in MySQL with PHP over Win 2K to administrate a
cybercafe. I want to make a routine that request ID and Password and
records the time utilized surfing.
Does anyone knows how could I make a routine that disables the
<CTRL><ALT><DEL> , <ALT><TAB> or <SHIFT><F4> so clients don't jump the
password screen?
Any ideas on where to find information related or which programming
language to use?
Thanks guys,
Alfredo
--- End Message ---
--- Begin Message ---
Hi, I'm running Win 2000 and have a site running php admin pages to
write content to pages sitting on the web. I do have session
authentication for the user to even get to the php admin pages. But
here is the problem:
My System administrator is very concerned about how many folders and
pages on our web we have had to set an "internet/guest accout" with
write permissions to those folders or pages for php to change the
content. He said it is un-secure. We would like to know if there is a
way to make php run as a certain user in IIS so that only that user has
write permissions to the files? So that anyone browsing through the net
can't write to the pages? What do most of you do?
Angie
--- End Message ---
--- Begin Message ---
>Hi, I'm running Win 2000 and have a site running php admin pages to
>write content to pages sitting on the web. I do have session
>authentication for the user to even get to the php admin pages.
Maybe I'm missing something here, but you don't need write permissions to
write to a file on the server with a server side script. Why not use plain
old "forms" to have your authenticated users pass information to your
script, then have the script write it to the external file?
--
Dave "Crash" Dummy
Certified Dilettante
[EMAIL PROTECTED]
http://lists.gpick.com
--- End Message ---
--- Begin Message ---
Well if I don't need write permissions, then how come the program would
spit out "Can't write to *whatever*" until I put write permissions on
the file? And I am using forms that have an action of php where php
writes the data to a file somewhere....Anyone else have any ideas?
Angie
>>> ""Crash" Dummy" <[EMAIL PROTECTED]> 02/07/02 10:44AM >>>
>Hi, I'm running Win 2000 and have a site running php admin pages to
>write content to pages sitting on the web. I do have session
>authentication for the user to even get to the php admin pages.
Maybe I'm missing something here, but you don't need write permissions
to
write to a file on the server with a server side script. Why not use
plain
old "forms" to have your authenticated users pass information to your
script, then have the script write it to the external file?
--
Dave "Crash" Dummy
Certified Dilettante
[EMAIL PROTECTED]
http://lists.gpick.com
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
Let me clarify. You do need write permission set for the anonymous user in
NTFS, as set with Explorer, but not for the server service, as set with the
IIS MMC. This allows scripts to write but does not allow direct access by
the anonymous user or guest accounts. Guest accounts are not required.
Filtering is controlled by the script. Direct access by the anonymous user
can be set to read only, using IIS, to allow retrieval by the client, or
blocked completely, if you prefer.
--
Dave "Crash" Dummy
Certified Dilettante
[EMAIL PROTECTED]
http://lists.gpick.com
--- End Message ---
--- Begin Message ---
Ah..my fault..I should have explained better. Yes, the write
permissions are via explorer. Not in IIS. So if I'm understanding you
correctly...there shouldn't be any security concerns about setting a
file to have write by anonymous via explorer? As long as IIS is set to
read (which it is) it is safe? Why is my sys admin throwing such a fit?
How can I explain to him how secure this is or am I missing something?
Angie
>>> ""Crash" Dummy" <[EMAIL PROTECTED]> 02/07/02 12:26PM >>>
Let me clarify. You do need write permission set for the anonymous user
in
NTFS, as set with Explorer, but not for the server service, as set with
the
IIS MMC. This allows scripts to write but does not allow direct access
by
the anonymous user or guest accounts. Guest accounts are not required.
Filtering is controlled by the script. Direct access by the anonymous
user
can be set to read only, using IIS, to allow retrieval by the client,
or
blocked completely, if you prefer.
--
Dave "Crash" Dummy
Certified Dilettante
[EMAIL PROTECTED]
http://lists.gpick.com
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
>Why is my sys admin throwing such a fit?
>How can I explain to him how secure this is or am I missing something?
Some administrators don't want to allow anything but passive HTML. Allowing
write permissions IS a security risk, if not done correctly, and requires a
lot more attention from the administrator. I can't put any server scripts on
the piddly little web site my ISP provides, for example. You generally need
a professional web hosting service for that. Do you have any other scripts
that write or edit files on the server?
This is "off topic" for PHP. It is more server related. Maybe you should
contact me directly if you have more questions.
--
Dave "Crash" Dummy
Certified Dilettante
[EMAIL PROTECTED]
http://lists.gpick.com
--- End Message ---
--- Begin Message ---
We use iPlanet on Windows for a number of our servers, and have succesfully
installed PHP 4.0.6 on NES 4 on NT, with the NSAPI install. There was one
step that we had to do, which wasn't in the manual, however - which was
making sure that the domain field in the server's TCP/IP Settings was filled
in. That field wasn't necessary to make NES 4 run, just PHP.
I'm now trying to put together a demonstration laptop, to take some of our
products on the road, where an internet connection wouldn't be available,
and I've got to do our install on a laptop running XP Home, for the moment.
iPlanet 6 sp1 installed perfectly on XP, and the normal NSAPI configuration
for iPlanet went smoothly, but it won't work.
As before, with NES 4 before we added the domain info to the TCP/IP config,
running a phpinfo() file would crash httpd.exe. The domain fixed this.
Now, does anyone know why this crash happens, and would anyone have any
suggestions how to stop it from happening on XP Home, which doesn't have the
ability to specify a domain?
James Hallam
--- End Message ---
--- Begin Message ---
Hello
I have a problem with such configuration:
- Windows XP Pro w/o IIS
- Apache as a service
- MySQL as a service
- PHP
All works fine, but 2 strange things appear:
1. I've tested some scripts for online store (PHP/MySQL) and when I just
type http://localhost everything works fine 50 products on page, 100, 150
and so on, but when I type IP address of the serwer, and want to put more
than 10 products on the page I got an error page that server is
unreachable - you can see this situation (working because 10 products on
page) http://217.96.249.140/vshop/ - I tried to modify php.ini but 300s and
16MB should work fine? What else can I do?
2. Second problem - maybe not too different from the first - everything
works fine when I use MSIE, but when I start older version of Netscape (I've
tested 4.5, 4.7, even on Linux machine) and type previous URL - Netscape
loads several bytes of the page and stops loading - it can run abou 30 min,
and don't report any error. Other thing is that when I want to lauch page
from local file I have the same problem with Netscape it seems that it
doesn't cooperate under Windows XP. Maybe someone who has installed NN test
this URL: http://217.96.249.140/ - is it seen with NN or not?
I will be waiting for your help
Thanks in advance
Lee
--- End Message ---
--- Begin Message ---
OK, I am going to rephrase my original post.
I have a PHP script which calls a COM object which talks to Crystal Reports
which runs a report and returns a PDF file to display in the browser.
I need Crstyal Reports 8.5 - or better - to do this. Now, I have CR8.5
installed on my system and all works fine.
Now, if I want to distribute this functionality to end-users, how can I do
this without them having to also install Crystal Reports.
Can't I just provide a few necessary DLL's ? I can't seem to find any
documentation on this anywhere.
Anyone have any ideas or suggestions or good sources of info for Crystal
Reports?
TIA!
nicole
www.aeontrek.com
--
Nicole Amashta
Web Applications Developer
ABOL Software, Inc.
--- End Message ---
--- Begin Message ---
Hello,
I've just downloaded php 4.1.1 for windows. I don't see php_printer.dll in
it. How shall I use the printer?
TIA
Strashimir Yosifov
--- End Message ---
--- Begin Message ---
Try:
http://www.php4win.de
Not sure that it is in the last build...
A+
Alain
-----Original Message-----
From: Strashimir [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 07, 2002 10:15 PM
To: [EMAIL PROTECTED]
Subject: [PHP-WIN] Printing with PHP 4.1.1. for Windows
Hello,
I've just downloaded php 4.1.1 for windows. I don't see php_printer.dll in
it. How shall I use the printer?
TIA
Strashimir Yosifov
--
PHP Windows Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--- End Message ---
--- Begin Message ---
You can also avoid these errors by prefixing your variables like so:
> if(@$user1==$USER && @$password1==$PASSWORD) {
This has the advantage of skipping the error on this occasion rather than
for all.
dan
"Nicole Amashta" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> In your php.ini, replace your error_reporting line with this one:
>
> error_reporting = E_ALL & ~E_NOTICE
>
> That should get rid of the warnings since pre-defining vars in PHP isn't
> really required (as in Java).
>
> Good luck,
> ~Nicole Amashta
> www.aeontrek.com
>
>
> "Bz" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hello everyone,
> I have a small question:
> How can I get rid of "Warning: Undefined variable: user1(& password1) in
> C:\WebShare\wwwroot\netk\5\login.php on line 4" in that program?
>
> <?php
> include ("config.php");
> session_register("userpassword");
> if($user1==$USER && $password1==$PASSWORD) {
> $userpassword = $user1.$password1;
> header("Location:index.php");
> exit();
> }
> ?>
> <HTML>
> <HEAD>
> <TITLE>login</TITLE>
> <HEAD>
> <BODY>
> <FORM action="<? echo $PHP_SELF ?>" method="POST">
> <TABLE border="0" width="400">
> <TR>
> <TD>account£º
> <INPUT type="text" name="user1">
> <TD>password£º
> <INPUT type="password" name="password1">
> </TD>
> </TR>
> <TR>
> <TD>
> <INPUT type="submit" value="login">
> <INPUT type="reset" value="cancel">
> </TD>
> </TR>
> </TABLE>
> </FORM>
> </BODY>
> </HTML>
>
>
>
--- End Message ---
