Jump to content

MrHappy

Members
  • Content Count

    8
  • Joined

  • Last visited

  • Days Won

    1
  • Feedback

    0%

MrHappy last won the day on June 2 2012

MrHappy had the most liked content!

About MrHappy

  • Rank
    Bit Member
  • Birthday 08/12/1993

Profile Information

  • Gender
    Male
  • Location
    Anaheim, California
  • Interests
    Web Development (CSS, xHTML, PHP, JavaScript), C#.NET, VB.NET, C++.NET
  • Expertise
    Jack of All Trades

Contact Methods

  • Skype
    DeadLogical
  1. Your disadvantage is the fact that it isn't entirely compatible with all browsers. This is mainly because every browser doesn't follow a single set of web standards quite yet, however; we are slowly getting there. (Well everyone except IE.) If you are interested in keeping up-to-date with HTML5 Compatibility check out this page. http://html5test.com/results/desktop.html
  2. That's why I advice thinking of something you want to build. Anything...try making a login system. Get as far as you can, then research how to make one in PHP. It's the greatest method alive!
  3. It will fully sanitize the input to prevent mysql injection, essentially what it does is compile the variable as if it was being sent into the database, and then sanitizes it. This prevents any really clever hacker from using methods like CHAR(32) (<- Tells MYSQL to generate a double quote, which is not parsed by addslashes and other SQL sanitation methods.) to do real SQL injection. :]
  4. I would suggest doing it where you are converting the $_POST/$_GET/$_COOKIE into the variable. EG; $ProjectDescription = nl2br ( mysql_real_escape_string ( $_POST['ProjectDescription'] ) );
  5. You still have some security issues with that, I always suggest to sanitize all input data with mysql_real_escape_string. Now to prevent XSS injection (JavaScript mainly,) when displaying any MySQL data that can be user-edited, use htmlspecialchars which will replace html characters with a display-safe value. However as far as your line breaks go you have the right idea, however it would be better to do the parse when dropping the data out of the database, that way you can control when/where it is occurring.
  6. I did a little bit of code clean-up and formatting. It does the same thing, however is a bit cleaner. <?php define ( "_VALID_PHP", true ); require_once ( "init.php" ); // Validate that the user is logged in. if ( !$user->logged_in ) { redirect_to ( "index.php" ); exit; } // Establish the database connection. if ( !( $link = @mysql_connect ( 'localhost', 'db_user', 'password' ) ) ) { // Throw connection error. die ( 'Could not connect: ' . mysql_error ( ) ); } // Select database schema. @mysql_select_db("db_pm", $link); // Query and display information. $query = @mysql_query (
  7. I'm having a rather difficult time picking between the choices of PHP Frameworks. I've managed to widdle down my choices between just a set few Frameworks. My desires; Flexibility Scalability Good Documentation My list of possible choices so far; Yii Framework CodeIgniter CakePHP Zend I'm just wondering what your opinions are for these frameworks, and what you think would be my best choice.
  8. Well I started web development about 6 years ago and my main resource for any development questions was the almighty Google. I have a rather simple philosophy when it comes to learning how to understand any language at a complex level; simply put you can only truly understand a language when you are are naturally discovering each piece. What that means to me is that for a person to be able to actually learn, they need to learn for themselves, they need to discover every aspect they don't understand on their own, and they need to do this by what ever means they have available. Luckily in our da
×
×
  • Create New...